The HttpTroy backdoor is an undocumented threat attributed to the North Korean threat actor Kimsuky. It was used in a spear-phishing attempt aimed at a specific individual in South Korea, marking the development of new tactics in cyber warfare. While details remain scarce, Gen Digital has confirmed the involvement of Kimsuky in this attack, emphasizing the ongoing cyber threats posed by state-sponsored actors.
The phishing email reportedly contained a ZIP file named “250908_A_HK이노션”, highlighting the tailored approach used in the attack. Although no detailed timeline of when the incident occurred is provided, the emergence of HttpTroy underscores the evolving landscape of malware and cyber threats. Continued vigilance and advanced defensive measures are imperative to combat such sophisticated attacks, especially from state-linked groups.
👉 Pročitaj original: The Hacker News
