The North Korean threat actor APT Kimsuky targeted think tanks in the United States, Japan, and South Korea working on nuclear policy and sanctions. The hackers used spear-phishing emails and watering-hole attacks to gain access to victims’ networks.
- Experts and think tanks in the United States, Japan, and South Korea
Suspected state sponsor
- Korea (Democratic People's Republic of)
Type of incident
- Private sector
- Civil society
Victim government reaction