[Security News] North Korean Kimsuky Hackers Exposed in Data Breach
13th August 2025
North Korean Hackers “Kimsuky” Exposed in Data Breach
The North Korean hackers, the state-sponsored hacking group known as Kimsuky, reportedly exposed a breach. “Saber” and “cyb0rg,” two hackers, are said to have stolen and leaked an 8.9GB data dump from the group. The leaked data reportedly includes phishing logs, the full source code for South Korea’s Ministry of Foreign Affairs email platform, and various hacking tools. This exposure is expected to disrupt Kimsuky’s ongoing operations by revealing their infrastructure and methods. The two hackers also noted Kim’s “strict office hours, always connecting at around 09:00 and disconnecting by 17:00 Pyongyang time.”
Source: Bleeping Computer, TechCrunch
Google Confirms Data Breach by ShinyHunters
Google has confirmed a data breach of a Salesforce CRM instance used for communicating with prospective Google Ads customers. ShinyHunters threat group carried out the attack. They not only exposed basic business contact information but also related notes for a limited number of potential customers. The stolen data did not include payment information or Google Ads data. ShinyHunters, who claim to have stolen 2.55 million records, are now collaborating with another threat group, Scattered Spider. The group, “Sp1d3rHunters”, typically gains access through social engineering and has reportedly demanded 20 Bitcoins from Google to prevent the data from being leaked.
Source: Bleeping Computer, Forbes, CyberSecurityNews
Allianz Data Breach Expose Vulnerabilities
Allianz Life Insurance has confirmed a data breach of a third-party, cloud-based CRM system, which exposed the personal information of a large number of its customers in North America. The breach, which occurred in mid-July, is suspected to be the work of the cybercrime group ShinyHunters, which has been targeting Salesforce CRM instances through social engineering attacks. The exposed data includes names, Social Security numbers, dates of birth, addresses, phone numbers, and policy numbers. Allianz has stated that its internal systems were not compromised and that it is offering free credit monitoring and identity theft protection to affected customers.
Dutch Medical Laboratory Data Breach
A data breach has been reported at the Dutch medical laboratory Clinical Diagnostics NMDL, with a larger scope than initially thought. The breach affects over 485,000 women involved in the cervical cancer screening program, with hackers accessing names, addresses, social security numbers, and potentially test results. A subsequent investigation revealed the breach also includes data from skin, urine, and penis examinations from various patients. The stolen data covers the period from 2022 to the current year and belongs to patients of healthcare providers such as the LUMC, Amphia Hospital, and Alrijne Hospital. While a small amount of data has been posted online on the dark web, the total stolen data is 300 GB, indicating a more significant hack.
Source: TECHZINE, Bank Info Security
Click here to subscribe our Newsletter
Check out Penta Security’s product lines:
Web Application Firewall: WAPPLES
Database Encryption: D.AMO
Click here for inquiries regarding the partner system of Penta Security
Check out the product lines of Cloudbric by Penta Security:
Cloud-based Fully Managed WAAP: Cloudbric WAF+
Agent based Zero Trust Network Access Solution: Cloudbric PAS
Agentless Zero Trust Network Access Solution: Cloudbric RAS
Click here for inquiries regarding the partner system of Cloudbric