U.S. warns of new North Korean email-based cyberattacks

Thomas Maresca

May 3, 2024 at 5:28 AM·2 min read

North Korean hackers are using a new tactic for email-based cyberattacks, a U.S. cybersecurity advisory warned. File Photo by Stephen Shaver/UPI

SEOUL, May 3 (UPI) -- North Korean hackers are exploiting an email security flaw in attacks used to gather sensitive intelligence and information, a new U.S. cybersecurity advisory warned.

The advisory, issued Thursday by the FBI, State Department and National Security Agency, said that members of the Pyongyang-backed hacking collective Kimsuky are sending spearphishing emails to individuals at think tanks, academic institutions and media organizations.

Spearphishing is a type of scam that targets specific individuals or groups with personalized information. In this case, the North Korean hackers appear to be legitimate journalists or scholars and are able to hide their identities through improperly configured DNS Domain-based Message Authentication, Reporting and Conformance, or DMARC, records on email systems.

"North Korea leverages these spearphishing campaigns to collect intelligence on geopolitical events, adversary foreign policy strategies, and any information affecting North Korean interests by gaining illicit access to targets' private documents, research and communications," the advisory said.

In one example, a hacker pretending to be a think tank staffer invited a U.S. government official to give a keynote address at a conference on North Korea. In another, a Kimsuky agent posed as a journalist seeking comment on geopolitical issues related to North Korea.

Red flags include awkward sentence structure or grammar and subtle incorrect spellings of legitimate names and email addresses, the advisory said.

Once the hackers establish engagement with a target, they may attempt to follow up with emails containing malicious links and attachments that will compromise the victim's account or network.

Kimsuky is believed to operate under the North's premier military intelligence organization, the Reconnaissance General Bureau. The hacker group is also known as Emerald Sleet, Thallium and Velvet Chollima by private-sector cybersecurity researchers.

"Kimsuky actors' primary mission is to provide stolen data and valuable geopolitical insight to the North Korean regime by compromising policy analysts and other experts," the advisory said. "Successful compromises further enable Kimsuky actors to craft more credible and effective spearphishing emails, which can then be leveraged against more sensitive, higher-value targets."

Washington sanctioned Kimsuky in November, saying its cyber espionage campaigns directly support the North's strategic and nuclear ambitions

North Korea has increasingly turned to hacking and cybertheft in recent years to raise funds for its illicit weapons programs.

Pyongyang funds 40% of its WMD program through "illicit cybermeans," the U.N. Security Council's Panel of Experts estimated in an annual report released in March. The Panel said that 58 suspected cyberattacks on cryptocurrency-related companies generated some $3 billion for the regime between 2017 and 2023.

TechCrunch
Slack under attack over sneaky AI training policy
It all kicked off last night, when a note on Hacker News raised the issue of how Slack trains its AI services, by way of a straight link to its privacy principles -- no additional comment was needed.
Yahoo Personal Finance
How to spot credit card skimmers
Learn what credit card skimmers are, how to spot them, and the steps you can take to protect your debit and credit card information.
Yahoo Life
Kelly Clarkson is the latest celebrity to admit to using weight loss drugs. Do stars have a responsibility to share?
Are celebrities obligated to tell the world that they're using medication to aid in weight loss? Here's what experts say.
Yahoo Life Shopping
The best portable power station for 2024 to help you prep for storms, blackouts and emergencies
Suitable for homes, apartments, RVs and more, these backup batteries are a modern must-have.
Yahoo Life Shopping
The 40+ best Amazon early Memorial Day deals: Save up to 80% on summer essentials, vacuums, tech and more
A No. 1 bestselling Ninja air fryer for $80 is calling our name, as is a sleek stick vac marked down by over 50%. That's just for starters.
Yahoo Sports
FSU petitioning NCAA to rescind penalties related to NIL recruiting violations
The penalties are the result of a rule-breaking incident that transpired in 2022, when a booster and representative of the school’s NIL collective made an offer to a prospect.
Yahoo News
New Yahoo News/YouGov poll shows why Biden-Trump rematch is still neck and neck
Right now, neither candidate is strong enough to capitalize on his opponent's flaws.
Autoblog
Nissan gets it on with the loud "Karaok-e" van concept
Nissan of Europe creates a one-off Townstar Evalia electric van with a karaoke lounge in the back with lights and screens and microphones.
Yahoo News
AI-generated images are running rampant on social media. What are X, TikTok and Meta doing to control them?
While an AI-generated photo of Katy Perry at the Met Gala isn't a major cause for concern, Instagram's fact-checkers taking hours to flag it indicates a larger issue social platforms have to grapple with regarding AI.
Yahoo News
Here are all of the Republicans who have shown up in court to support Trump at his hush money trial
GOP lawmakers have been showing up at the Manhattan Criminal Courthouse in waves to give the former president a public show of support, help him circumvent the gag order — and audition for a role in a possible second-term Cabinet.
Yahoo Sports
Is the Toronto Blue Jays' window to contend officially closing?
Sitting last in the AL East with regression throughout the lineup, the Blue Jays will soon have to face the reality of being sellers at this year's trade deadline.
Engadget
Valve’s next game appears to be Deadlock, a MOBA hero shooter
According to a pair of content creators, the wait for a new Valve game is almost over: A third-person hero shooter is imminent, and it’s called Deadlock.
Engadget
The OpenAI team tasked with protecting humanity is no more
In the summer of 2023, OpenAI created a “Superalignment” team whose goal was to steer and control future AI systems that could be so powerful they could lead to human extinction. Less than a year later, that team is dead.
Yahoo Entertainment
What does it mean to be 'coded'? Linguists break down the very online use of the word.
Why is everything suddenly "coded"? How to make sense of the word that's taking over social media.
Engadget
Apple is said to be working on a 'significantly thinner' iPhone
The iPhone could be going the way of the iPad Pro by becoming much thinner next year. However, you'll may have to pay quite a lot for this rumored slender model, which may replace the Plus in the annual iPhone lineup.
TechCrunch
OpenAI created a team to control 'superintelligent' AI — then let it wither, source says
OpenAI's Superalignment team, responsible for developing ways to govern and steer "superintelligent" AI systems, was promised 20% of the company's compute resources, according to a person from that team. It had the ambitious goal of solving the core technical challenges of controlling superintelligent AI in the next four years.
Yahoo Life Shopping
Vanna White's favorite Laura Geller foundation has over 20,000 five-star fans — it's on sale for as low as $17
Fans say it's especially great on mature skin: 'I was finally able to cover my blotchy skin.'
Engadget
Twitter has officially moved to X.com
Twitter officially went through a rebranding almost a year ago, but most of its pages still used Twitter in their URL until now.
TechCrunch
Kudos lands $10M for an AI smart wallet that picks the best credit card for purchases
Kudos is one of those companies helping us do that. It has created an AI-powered smart wallet that recommends the right credit card to maximize rewards and cash back when making purchases. Kudos uses artificial intelligence to figure out consumer spending habits so it can then provide more personalized financial advice, like maximizing rewards and utilizing credit effectively, Tikue Anazodo, co-founder and CEO of Kudos, told TechCrunch.
Engadget
Engadget Podcast: Reviewing the iPad Pro M4 and iPad Air
We've spent some time with the iPad Pro M4 and new iPad Air... and the iPad Pro is still a bit too pricey for us.

News

Life

Entertainment

Finance

Sports

New on Yahoo

U.S. warns of new North Korean email-based cyberattacks

Recommended Stories

Slack under attack over sneaky AI training policy

How to spot credit card skimmers

Kelly Clarkson is the latest celebrity to admit to using weight loss drugs. Do stars have a responsibility to share?

The best portable power station for 2024 to help you prep for storms, blackouts and emergencies

The 40+ best Amazon early Memorial Day deals: Save up to 80% on summer essentials, vacuums, tech and more

FSU petitioning NCAA to rescind penalties related to NIL recruiting violations

New Yahoo News/YouGov poll shows why Biden-Trump rematch is still neck and neck

Nissan gets it on with the loud "Karaok-e" van concept

AI-generated images are running rampant on social media. What are X, TikTok and Meta doing to control them?

Here are all of the Republicans who have shown up in court to support Trump at his hush money trial

Is the Toronto Blue Jays' window to contend officially closing?

Valve’s next game appears to be Deadlock, a MOBA hero shooter

The OpenAI team tasked with protecting humanity is no more

What does it mean to be 'coded'? Linguists break down the very online use of the word.

Apple is said to be working on a 'significantly thinner' iPhone

OpenAI created a team to control 'superintelligent' AI — then let it wither, source says

Vanna White's favorite Laura Geller foundation has over 20,000 five-star fans — it's on sale for as low as $17

Twitter has officially moved to X.com

Kudos lands $10M for an AI smart wallet that picks the best credit card for purchases

Engadget Podcast: Reviewing the iPad Pro M4 and iPad Air