Kimsuky Unveils New Addition to Its Malware Arsenal

Threat Level

Actor Report

For a detailed threat advisory, download the pdf file here

Summary

Kimsuky, a cyber-espionage group, is known for infiltrating via spear-phishing attacks, and is recognized for its versatility in using various types of malware and tools to facilitate remote control during their campaigns. Their primary objective is to steal internal information and technology from their targets. The group’s recent activities have revealed the use of a new malware component called “RevClient,” which is customized specifically for the latest campaign.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.