Tag: Amadey
-
GitHub Weaponized: Cisco Talos Uncovers Massive MaaS Operation Distributing Amadey, Loaders, and Infostealers
In April 2025, cybersecurity experts from Cisco Talos uncovered a new threat vector: cybercriminals exploiting public repositories on GitHub to host malicious payloads used in distributing the Amadey trojan. According to researchers, the creation of counterfeit GitHub accounts enabled threat actors to bypass web filters while streamlining the logistical execution of their campaign. At the…
-
Kimsuky: North Korean Spies Weaponize AutoIt for Cyber Espionage
In the shadowy world of cyber espionage, the Kimsuky threat group, believed to be backed by North Korea, stands out for its persistent and evolving tactics. Active since 2013, Kimsuky initially focused on South Korean targets, including research institutes and a major energy corporation, before broadening its scope to international espionage from 2017. Kimsuky’s primary…