American Invest Hub
  • Politics
  • Investing
  • Business
  • Latest News

American Invest Hub

  • Politics
  • Investing
  • Business
  • Latest News
Business

North Korea-linked hackers use AI to forge South Korean military ID in phishing attack

by admin September 15, 2025
September 15, 2025
North Korea-linked hackers use AI to forge South Korean military ID in phishing attack

A suspected North Korean hacking group has been found using ChatGPT to generate a forged South Korean military identification document as part of a phishing campaign, according to a Bloomberg report citing research by Genians, a South Korean cybersecurity company.

Instead of embedding a real image, attackers linked the fake ID card to malware designed to extract sensitive information from devices.

The incident highlights how North Korean operatives are increasingly deploying artificial intelligence tools to advance cyber-espionage, with targets ranging from journalists and human rights activists to researchers focused on North Korea.

Hackers deploy fake military ID in South Korea

The group involved in the latest attack has been identified as Kimsuky, a suspected North Korean state-sponsored espionage unit.

Researchers said the hackers crafted a draft version of a South Korean military identification card using ChatGPT, making their phishing email appear more credible.

The email, sent from an address ending in .mli.kr—closely resembling an official South Korean military domain—was designed to trick recipients into opening the attachment.

Once clicked, the file deployed malware capable of extracting data.

The targets included South Korean journalists, human rights activists, and researchers studying North Korea.

Exactly how many individuals were compromised remains unclear.

Kimsuky’s history of espionage and AI use

Kimsuky has previously been linked to spying efforts against South Korean and international targets.

In a 2020 advisory, the US Department of Homeland Security stated that the group “is most likely tasked by the North Korean regime with a global intelligence-gathering mission.”

The Genians report is the latest to show suspected North Korean hackers using artificial intelligence as part of their operations.

In August, Anthropic reported that North Korean hackers used Claude Code, another AI tool, to secure remote jobs at US Fortune 500 companies.

The AI chatbot helped operatives build convincing fake identities, pass technical assessments, and deliver coding tasks once hired.

Earlier this year, OpenAI said it had banned accounts linked to North Korea that were using its services to create fraudulent résumés, cover letters, and social media content as part of recruitment attempts.

Investigators test AI restrictions

Genians researchers confirmed that ChatGPT initially rejected attempts to generate a government-issued ID, as the reproduction of such documents is illegal in South Korea.

However, by altering the prompt, the restrictions were bypassed, and the hackers were able to create a fake draft image.

The use of AI in these cyberattacks shows how quickly generative models can be adapted for malicious purposes.

Researchers warn that attackers are using AI not just to create convincing images, but also for malware development, attack scenario planning, and impersonation of recruiters.

Cyberattacks tied to North Korean funding efforts

American officials have long alleged that North Korea employs cyberattacks, cryptocurrency theft, and disguised IT contracts to gather intelligence and generate revenue.

These operations, according to US government assessments, are designed to evade sanctions and finance Pyongyang’s nuclear weapons programme.

The phishing attempt against South Korean targets is another example of how AI is being integrated into such operations.

While the attack used a fake military ID as bait, the broader goal remained consistent with previous North Korean tactics: extracting data and extending cyber-espionage capabilities.

The post North Korea-linked hackers use AI to forge South Korean military ID in phishing attack appeared first on Invezz

0
FacebookTwitterGoogle +Pinterest
previous post
Sainsbury’s shares hit four-year high as Argos sale talks with JD.com collapse
next post
China’s Xpeng expands global footprint with Austria plant

Related Posts

What next for the Nifty 50 index and...

December 11, 2024

Chipotle says restaurants will give bigger servings after...

July 29, 2024

Boeing is laying off 10% of its workforce,...

October 12, 2024

XRP wallets holding 1M+ tokens hit 2,850 as...

June 27, 2025

European stocks feel the heat after Trump’s tariff...

December 20, 2024

Dow futures soar 100 points today: 5 things...

August 11, 2025

Asian markets open: Nikkei gains as Trump mulls...

June 18, 2025

Analysts are upbeat about AMD stock price: should...

May 12, 2025

Super Micro (SMCI) stock sends mixed signals ahead...

October 25, 2024

COMAC dreams of international skies: can the Chinese...

January 20, 2025

    Stay updated with the latest news, exclusive offers, and special promotions. Sign up now and be the first to know! As a member, you'll receive curated content, insider tips, and invitations to exclusive events. Don't miss out on being part of something special.


    By opting in you agree to receive emails from us and our affiliates. Your information is secure and your privacy is protected.

    Latest News

    • Europe bulletin: Manchester synagogue attack aftermath, stocks close higher

      October 5, 2025
    • Evening digest: Trump sets deadline for Hamas, Canada’s slowdown, BTC rebounds

      October 5, 2025
    • Iran executes six people for alleged links to Israel, state media reports

      October 5, 2025
    • US digest: Trump’s Hamas ultimatum, government shutdown stalemate continues

      October 5, 2025
    • Japanese stocks may extend record run as Takaichi win revives ‘Abenomics’

      October 5, 2025

    Categories

    • Business (4,191)
    • Investing (2,958)
    • Latest News (2,080)
    • Politics (1,536)
    • About us
    • Contact us
    • Privacy Policy
    • Terms & Conditions

    Disclaimer: americaninvesthub.com, its managers, its employees, and assigns (collectively “The Company”) do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.

    Copyright © 2025 americaninvesthub.com | All Rights Reserved