See this message from CISA which basically says that forewarned is forearmed:
Critical Infrastructure Colleagues and Partners
On October 27, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI) and U.S. Cyber Command Cyber National Mission Force (CNMF) issued a joint cybersecurity advisory that describes the tactics, techniques, and procedures (TTPs) used by North Korean advanced persistent threat (APT) group Kimsuky—against worldwide targets—to gain intelligence on various topics of interest to the North Korean government.
This advisory aims to describe known Kimsuky TTPs as captured by open-source and intelligence reporting through July 2020. The target audience for this advisory is commercial sector businesses desiring to protect their networks from this North Korean APT activity.
The advisory can be found here and previously reported North Korean malicious cyber activity and important mitigation recommendations can be found here.
We encourage you to widely share this important information.
___
(c) 2020 Emergency Management
Distributed by Tribune Content Agency, LLC.
