In a stunning display of modern criminal innovation, North Korean hackers have unveiled a brand-new backdoor malware, cleverly masquerading as a VPN invoice. Because why bother with logic when you can just charge people for their own data breaches?

The nefarious group Kimsuky, renowned for their unique blend of espionage and attempted capitalism, targeted an unsuspecting victim in South Korea. Clearly, they’re piloting a ‘Spear-fishing & Billing’ payment model, a cutting-edge concept where the victim pays for their own hacking. Genius, right?

The phishing attack included a ZIP file named ‘250908_A_HK이노션’, which presumably stands for ‘Hey_Korea_Innovative_Invoice’, but we’ll have to check with the creative department on that. In the spirit of open communication, the hackers decided to leave out the incident date but ensured the malicious file was delivered in a timely manner. Efficiency above all!