
In a significant shift marking an evolution in their cyber attack strategies, the North Korean hacking group Kimsuky has been identified employing phishing attacks that completely lack malware, effectively evading major Endpoint Detection and Response (EDR) systems. This innovative approach underlines Kimsuky’s adaptability and their continued efforts to compromise the accounts of researchers and organizations that focus on North Korea.