Cybersecurity researchers have identified a new malicious campaign linked to the North Korean state-sponsored threat group Kimsuky, utilizing a recently fixed vulnerability in Microsoft Remote Desktop Services for initial access. The campaign has been dubbed Larva-24005 by the AhnLab Security Intelligence Center (ASEC). This campaign highlights the ongoing threat posed by sophisticated state-sponsored cyber actors and the importance of promptly applying security patches to protect against such attacks.