Menu
Microsoft wrests control of web domains used by hacking group

Microsoft wrests control of web domains used by hacking group

Thallium is believed to be operating from North Korea, according to Microsoft

Credit: Dreamstime

Microsoft Corp has said it has taken control of web domains which were used by a hacking group called "Thallium" to steal information.

Thallium is believed to be operating from North Korea, Microsoft said in a blog post, and the hackers targeted government employees, think tanks, university staff members and individuals working on nuclear proliferation issues, among others.

Most of the targets were based in the United States, as well as Japan and South Korea, the company said.

Thallium tricked victims through a technique known as "spear phishing", using credible-looking emails that appear legitimate at first glance.

Microsoft said it now has control of 50 web domains used by the group to conduct its operations, following a case filed against the hacking group in the US District Court for the Eastern District of Virginia, and a subsequent court order.

Thallium also used malware to compromise systems and steal data, and is the fourth nation-state group against which Microsoft has taken legal action, the company said.

(Reporting by Ayanti Bera in Bengaluru; Editing by Shounak Dasgupta)


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags Microsoftphishingsecurity

Brand Post

Show Comments