Achievement
A Bleeping Computer article introduced TALON report about Kimsuky's New Golang Stealer
2024.05.27
A Bleeping Computer article introduced the report "Kimsuky's New Golang Stealer 'Troll' and 'GoBear' Backdoor Target South Korea," published by S2W threat intelligence center TALON in February this year.
Kimsuky is a state-sponsored threat actor linked to North Korea’s military intelligence, the Reconnaissance General Bureau (RGB).
In early February 2024, TALON reported about a campaign where Kimsuky used trojanized versions of various software solutions, e.g. TrustPKI and NX_PRNMAN from SGA Solutions, Wizvera VeraPort, to infect South Korean targets with Troll Stealer and the Go-based Windows malware GoBear.
TALON believe that supply-chain attacks (software, trojanized installers, fake installers) represent the preferred attack method for North Korean espionage actors.
In the report, TALON note that the choice of the software to be trojanized "appears to have been carefully chosen to maximize the chances of infecting its intended South Korean-based targets."
Check out the article below for more detailed information.
MOU/Partnership
S2W Provides Generative AI Platform 'SAIP' to Hyundai Steel
2024.05.22
Previous
Event/Seminar
S2W is participating at ISS WORLD Europe
2024.06.03
Next