South Korea – TheCyberThrone

Chinese Plushdaemon APT targets SouthKorea

Background PlushDaemon is a China-aligned Advanced Persistent Threat (APT) group, active since at least 2019. Known for its sophisticated cyber-espionage operations, this group targets various high-profile entities across multiple sectors.…

PravinKarthik January 23, 2025

Reptile Rootkit Malware Targets South Korea

Researchers have spotted that threat actors that are using an open-source rootkit dubbed as Reptile in attacks aimed at systems in South Korea. Reptile, an open-source kernel module rootkit that…

PravinKarthik August 6, 2023

South Korea fines Google and Meta over Privacy

South Korea levied tens of millions of dollars in fines on Alphabet's Google and Meta Platforms for privacy law violations. The Personal Information Protection Commission said it fined Google 69.2…

PravinKarthik September 20, 2022

Gold Dragon Backdoor

South Korean researchers have discovered a reformed wave of activity of Kimsuky hacking group, which includes using basic open-source remote access tools and their own backdoor, Gold Dragon. Kimsuky, also…

PravinKarthik February 10, 2022

Hackers Impersonates as Samsung Recruiters

North Korean state-sponsored hackers posed as Samsung recruiters and sent fake job offers to employees at South Korean security companies that sell anti-malware software. The emails included a PDF allegedly…

PravinKarthik November 27, 2021

South Korean Telco’s KT Suffers Major Network Outage

South Korean telecommunication operator KT suffered a nationwide network outage on Monday, causing widespread disruptions of various daily tasks based on connectivity. Virtual classrooms were down, food delivery orders were…

PravinKarthik October 25, 2021

Trickbot Developer Handcuffed

An alleged Russian developer for the notorious TrickBot malware gang was arrested in South Korea after attempting to leave the country. The TrickBot cybercrime group is responsible for a variety…

PravinKarthik September 7, 2021

Security

BlueLight Payload

Researchers from Volexity recently investigated a Strategic Web Compromise of the Daily NK website by InkySquid. The targeted site is an online newspaper based in South Korea that posts news…

PravinKarthik August 20, 2021