A North Korean threat actor, Kimsuky, has used AI technology to generate fake South Korean military ID cards for a spear-phishing campaign. This campaign aimed to target researchers, activists, and journalists by mimicking official military communications. #Kimsuky #Deepfake #SpearPhishing #AIThreats #SouthKoreaMilitary
Keypoints
- Kimsuky exploited AI, specifically ChatGPT, to craft realistic fake military ID images.
- The phishing email impersonated a South Korean military institution to deceive recipients.
- The malware used in the campaign enables data theft and remote control of infected systems.
- AI-generated images posed a significant evolution in the groupβs spear-phishing tactics.
- Prompt injection techniques can bypass AI restrictions against creating illegal or counterfeit IDs.
Read More: https://www.infosecurity-magazine.com/news/ai-military-ids-north-korea/