Targeting of the staff of Korea Risk Group, as well as organizations in the United States, Asia, and Europe

Date of report

May 2023

Affiliations

Kimsuky

Kimusky deployed ReconShark malware against phishing targets, including the staff of the information and analysis firm Korea Risk Group, and organizations and individuals in the United States, Asia, and Europe, including think tanks, research universities, and government entities.

Suspected victims

Korea Risk Group and individuals and organizations in the United States, Asia, and Europe

Suspected state sponsor

Korea (Republic of)

Type of incident

Espionage

Target category

Private sector
Civil society

Victim government reaction

Unknown

Policy response

Unknown

Suspected state sponsor response

Unknown

Kimsuky Evolves Reconnaissance Capabilities in New Global Campaign

Cyber Operations Tracker

CFR.org

Topics

Regions

Explainers

Research & Analysis

Communities

Events