TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
View original
The Hacker News avatar

TGINSIGHT POST

Post #8085

@thehackernews

The Hacker News

Views10,500Post view count
PostedDec 1812/18/2025, 07:45 AM
Post content

Post content

North Korea–linked Kimsuky has been tied to a new Android malware campaign. The group is spreading a fresh DocSwap variant through QR codes on fake CJ Logistics sites. Once installed, the app deploys a full RAT with access to messages, calls, files, audio, and camera. 🔗 Read analysis here → https://thehackernews.com/2025/12/kimsuky-spreads-docswap-android-malware.html