Sparkling Pisces used undocumented malware KLogEXE and FPSpy to target users, where KLogEXE, a keylogger, and FPSpy, a backdoor variant, expand their arsenal. The FPSpy variant might be related to a 2022 campaign targeting a South Korean technology conglomerate. The North Korean APT group Sparkling Pisces, known for its sophisticated cyberespionage, initially targeted South Korean … Continue reading North Korean ‘Sparkling Pisces’ Strikes: Government and Research Institutions Under Attack