ADVERTISEMENT

North Koreans now using AI-generated PowerShell backdoor to target devs

Konni, a North Korean threat actor, has been using PowerShell malware generated using AI tools to attack developers and engineering teams in the blockchain sector. The phishing campaign has targeted users in Japan, Australia, and India.

konni-hackers

Image by Cybernews.

Gintaras Radauskas
Gintaras Radauskas Senior Journalist
Jan 27, 2026 Updated: 27 January 2026 1 min read
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.
ADVERTISEMENT
Has my data been leaked?
Active since at least 2014, the group typically relies on spear-phishing to deliver weaponized documents themed around geopolitical issues and activity on the Korean Peninsula.

ADVERTISEMENT