North Korea Threat Group Targeting Turkish Financial Orgs

McAfee reported finding malware associated with North Korean group Hidden Cobra on Turkish systems belonging to three large financial institutions and at least two major government-controlled entities in March.  The malware, Bankshot, was distributed via sophisticated phishing emails in these latest attacks.  They believe the goal was to “surveil their operations, establish functions of their processes, and ultimately compromise funds”.  Regular social engineering and phishing testing coupled with end-user awareness training can help protect against threats such as this.

Relevant URL(s):