North Korean hackers are reportedly using spear-phishing emails to target foreign-policy experts in an attempt to gain insights into Western policy on North Korea. Instead of infecting computers with malware or stealing data, the hackers are posing as reputable sources in order to elicit information from their targets. The campaign was first identified by researchers at the Microsoft Threat Intelligence Center, who dubbed the hacking group Thallium or Kimsuky. Thallium has a long history of attacking government employees, human rights organizations, think tanks, and academics. In 2020, a report by US government cybersecurity agencies said the group was “most likely tasked by the North Korean regime with a global intelligence gathering mission.”
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.