Wednesday, October 27, 2021

North Korean APT InkySquid Infects Victims Using Browser Exploit

North Korean APT InkySquid Infects Victims Using Browser Exploits

Volexity recently investigated a strategic web compromise (SWC) of the website of the Daily NK (www.dailynk[.]com), a South Korean online newspaper that focuses on issues relating to North Korea. Malicious code on the Daily NK website was observed from at least late March 2021 until early June 2021.

This post provides details on the different exploits used in the SWC, as well as the payload used, which Volexity calls BLUELIGHT. …

Read More

Latest news
Related news