A sophisticated Advanced Persistent Threat (APT) operation named Larva-24005, linked to the notorious Kimsuky threat group, has been discovered actively exploiting critical vulnerabilities in Remote Desktop Protocol (RDP) and Microsoft Office applications to compromise systems across multiple sectors and countries.
The campaign, which began in September 2023, represents a significant evolution in the group’s tactics, techniques, and procedures.
https://cybersecuritynews.com/kimusky-h ... abilities/