North Korea hackers sending Corona Vaccine related phishing emails

The relationship between North Korea and South Korea is not on good terms for the past few years and that’s probably because of the notorious mind and actions of North Korean leader Kim Jong-un.

Fresh reports are in that a hacking group possibly funded by North Korea Intelligence has been strategically targeting South Korean citizens through phishing emails urging recipients to book appointments for a newly developed corona vaccine that is countering a novel strain of Coronavirus that has sent almost half of Beijing into a lock-down again.

Cybersecurity Insiders have learned that the vaccine details and the email is being sent through an email address registered with the Korean Society for Health Promotion and Disease Prevention.

Highly placed sources state that the email server of the medical council might have been hacked by the North Korean hackers and their email account might have been compromised.

And the email that looks genuinely pinned to the council domain is asking recipients to go for the vaccine, which is actually a link to a malicious malware download.

ESTSecurity was the first firm to analyze and report the incident and has attributed the attack campaign to the Ministry of Defense and the Ministry of Unification of Kim. And the investigation conducted by researchers states the campaign might be earned money in illicit ways such as by spreading ransomware and demanding ransom, spreading malware capable of stealing banking credentials and also cryptocurrency from online e-wallets.

Kim is nowadays busy with his military testing ballistic missiles and last year was being speculated by western media that he was testing nuclear missiles to be used, if/when time demands.

Note– Russia has the support of China and North Korea if it wages a war with the west and Iran has also expressed its interest in joining hands with Putin to knock out all the western at once on a massive scale.

Ad
Naveen Goud
Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

No posts to display