The North Korea-linked nation-state hacking group known as Kimsuky has been observed conducting spear-phishing attacks to deliver an information stealer malware named forceCopy, according to new findings from the AhnLab Security Intelligence Center (ASEC).The attacks commence with phishing emails containing a Windows shortcut (LNK) file that’s disguised as a Microsoft Office or PDF document.
First seen on thehackernews.com
Jump to article: thehackernews.com/2025/02/north-korean-apt-kimsuky-uses-lnk-files.html
