Threat Trend Report on Kimsuky – June 2023


Activities of the Kimsuky group observed during June 2023 showed a slight increase in the overall number of fully qualified domain names (FQDNs), with more AppleSeed types detected in comparison to the group’s activities in May.

At one point, the information collection feature was removed from the FlowerPower type, but a few days later, samples were equipped with the said feature again.

Also, the RandomQuery type showed attempts to change into a new system after March 2023, but it seems no changes have been made as of yet.

Read more…