The Genians Security Center has uncovered a new spear-phishing campaign by North Koreaβs Kimsuky group, utilizing AI-generated deepfake ID cards to deceive targets. This demonstrates how state-sponsored cyber actors are weaponizing artificial intelligence and deepfake technology for espionage and cyber operations. #Kimsuky #DeepfakeCyberattack
Keypoints
- Kimsuky used ChatGPT to create AI-generated fake ID cards in their phishing attacks.
- The campaign involved embedding fake ID images and malicious PowerShell backdoors in phishing emails.
- The malware used obfuscated scripting, AutoIt, and persistence techniques like Task Scheduler.
- This operation builds on previous tactics, such as disguising malware as CAPTCHA security windows.
- Organizations are urged to strengthen security monitoring due to the rising use of AI deepfake technology in cyber warfare.
Read More: https://securityonline.info/kimsuky-group-weaponizes-ai-deepfakes-in-new-spear-phishing-campaign/