Konni Group Attacks Cryptocurrency Users Using Google’s Find Hub

The Konni group, a North Korean cyber espionage group linked to the Reconnaissance General Bureau, has used Google’s Find Hub for large-scale credential theft and device disabling. These attacks specifically target South Korean individuals, primarily in the cryptocurrency sector, using phishing techniques and compromised messaging applications. This marks the first known instance of the group leveraging this technology for such a sophisticated and coordinated attack, highlighting a growing cybersecurity threat associated with North Korean operations.