The North Korea-associated threat entity recognized as Kimsuky has been detected employing a novel strategy that entails misleading victims into executing PowerShell as an admin and subsequently guiding them to insert and run harmful code supplied by the actor.
“To implement this strategy, the threat actor impersonates a South Korean governmental representative and gradually establishes a connection with a victim prior to dispatching a