Security News > 2023 > March > Another year, another North Korean malware-spreading, crypto-stealing gang named
Google Cloud's recently acquired security outfit Mandiant has named a new nasty from North Korea: a cyber crime gang it calls APT43 and accuses of a five-year rampage.
"Mandiant assesses with high confidence that APT43 is a moderately sophisticated cyber operator that supports the interests of the North Korean regime," states a report on the gang released on Wednesday.
Mandian asserts "APT43 has shared infrastructure and tools with known North Korean operators, highlighting its role and mission alignment in a wider state-sponsored cyber apparatus."
"We have some indication that APT43 also carries out internal monitoring of other North Korean operations, including non-cyber activities," the report asserts.
"Mandiant assesses with moderate confidence that APT43 is attributable to the North Korean Reconnaissance General Bureau, the country's primary foreign intelligence service," the report adds.
"We believe North Korea has become increasingly dependent on its cyber capabilities, and APT43's persistent and continuously developing operations reflect the country's sustained investment and reliance on groups like APT43." .
News URL
https://go.theregister.com/feed/www.theregister.com/2023/03/30/mandian_apt43_north_korea/
Related news
- North Korean Hackers Target Crypto Firms with Hidden Risk Malware on macOS (source)
- North Korean hackers use new macOS malware against crypto firms (source)
- Crypto-stealing malware campaign infects 28,000 people (source)
- North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware (source)
- Perfctl malware strikes again as crypto-crooks target Docker Remote API servers (source)
- North Korean hackers employ new tactics to compromise crypto-related businesses (source)
- North Korean Hackers Target macOS Using Flutter-Embedded Malware (source)