Threat Landscape Dashboard

Assessing today's threats and the relationships between them

Operation Kitty Phishing

The campaign's goal is to steal confidential information and targets a range of sectors including government and defense with a focus on South Korean users. The threat actors behind the attacks also attempt to steal Ethereum and Bitcoin from cryptocurrency exchanges and individual users. The malware used in the operation is delivered using phishing emails with a zip attachment containing two remote access Trojans disguised as Hangul Word Processor (HWP) documents.
Name Modified Date Sources
Operation Kitty Phishing 2019-02-20