Kimsuky Exploits BlueKeep Vulnerability to Target Systems in South Korea and Japan, Focusing on Software, Energy, and Financial Industries
150/68 Wednesday, April 23, 2025 Cybersecurity researchers from AhnLab Security Intelligence Center (ASEC) in South Korea have detected a new cyberattack campaign linked to Kimsuky, a North Korean threat actor. The group is exploiting the BlueKeep vulnerability (CVE-2019-0708) in Microsoft Remote Desktop Services (RDP) to breach systems in South Korea and Japan. This campaign, dubbed […]