Statements (54)
| Predicate | Object |
|---|---|
| gptkbp:instance_of |
gptkb:Police_Department
|
| gptkbp:bfsLayer |
5
|
| gptkbp:bfsParent |
gptkb:Lazarus_Group
|
| gptkbp:affiliated_with |
gptkb:Lazarus_Group
|
| gptkbp:associated_with |
gptkb:North_Korea
|
| gptkbp:has_website |
gptkb:North_Korean_government
|
| https://www.w3.org/2000/01/rdf-schema#label |
Kimsuky
|
| gptkbp:is_active_in |
cyber warfare
southeast Asia east Asia global cyber operations |
| gptkbp:is_aimed_at |
academic institutions
government organizations think tanks |
| gptkbp:is_considered |
a threat actor
a persistent threat |
| gptkbp:is_involved_in |
espionage activities
|
| gptkbp:is_known_for |
gptkb:government_agency
exploiting vulnerabilities targeting journalists using encrypted communication targeting activists spear phishing campaigns targeting cryptocurrency exchanges using VP Ns using fake personas |
| gptkbp:is_monitored_by |
cybersecurity agencies
|
| gptkbp:is_used_to |
open-source tools
custom malware malicious attachments spear phishing emails links to compromised websites |
| gptkbp:known_for |
malware deployment
spear phishing attacks |
| gptkbp:operates_in |
cyberspace
|
| gptkbp:operational_status |
gptkb:2012
|
| gptkbp:religion |
state-sponsored
|
| gptkbp:reports_to |
security firms
a sophisticated operational structure multiple attack vectors |
| gptkbp:targets |
gptkb:human_rights_organizations
gptkb:Japan gptkb:Monarch gptkb:United_States gptkb:Educational_Institution defense contractors media organizations European countries energy sector companies |
| gptkbp:uses |
social engineering tactics
Android malware Windows malware |
| gptkbp:utilizes |
credential harvesting
data exfiltration techniques |