On Monday, tech giant Microsoft announced that it won a court order that allowed the company to take control of 50 websites that a North Korea-linked hacking group was using to make cyber-attacks.
The hacker group called “Thallium,” believed to be operating from North Korea, was using spear phishing technique to gather information about individuals through the public domain and social media. The hackers sent personalized emails that looked genuine, directing recipients to fraudulent websites where their account login details were compromised. As a result, hackers got access to the users’ emails, contact lists and calendar appointments (according to Microsoft).
Individuals targeted by Thallium included think tanks, university staff, government employees, and those working on nuclear proliferation issues. Most of the targets were based in the U.S, Japan, and South Korea.