Kimsuky, a North Korean state-sponsored threat actor, is using the ReconShark reconnaissance tool in a global campaign through spear-phishing emails, OneDrive links, and malicious macros. It has been active since 2012 and targets NGOs, think tanks, diplomatic agencies, military organizations, economic groups, and research entities. ReconShark is used to extract information about running processes, deployed detection mechanisms, and hardware information in order to perform “precision attacks” and deploy additional payloads.
Source: Hackernews
To mitigate these potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net or you can try your self using check.website.