Saigoneer

BackSociety » Tech » Dangerous North Korean Hacker Group Targets Vietnam, Japan, Middle East

Dangerous North Korean Hacker Group Targets Vietnam, Japan, Middle East

The group, called Reaper (code name: APT37), was previously responsible for several attacks on private and public entities in South Korea, North Korean defectors, and even individuals involved with the Olympic organizations.

A recent report by FireEye, a cybersecurity company based in California, has brought attention to a hacker group named APT37, which has likely been active since 2012. The report, titled "APT37 (Reaper): The Overlook North Korean Actor," suggests that since 2017, the group has branched out to include multinational targets outside of the Korean Peninsula including Vietnam, Japan, and the Middle East.

Specifically, in 2017, some of the group’s victims included a general director of a Vietnamese international trading and transport company, a Japanese human rights organization that has ties with the United Nations, and a Middle Eastern telecommunications company that entered a joint venture with the North Korea government but the deal didn't go through.

The cybersecurity company believes that the hacker collective operates primarily in North Korea and that "APT37 acts in support of the North Korean government," as many of its attacks align with the country’s objectives.

In an interview with WIRED, John Hultquist, FireEye’s director of intelligence analysis, warned about how sophisticated and dangerous APT37 can be: "This operator has continued to operate in a cloud of obscurity, mostly because they’ve stayed regional. But they’re showing all the signs of a maturing asset that’s commanded by the North Korean regime and can be turned to any purpose it wants."

APT37’s most common technique to get a hold of users’ personal device is using zero-day vulnerability, which means exploiting unknown security vulnerabilities on the same day said vulnerabilities are made known. Flaws in Adobe Flash, BitTorrent, and the Hangul word processor are also utilized to spread malware via attachments.

Once a device is infected, APT37’s toolsets allow the hacker group to do a handful of disturbing things including taking computer screenshots, recording keystrokes, browsing files, stealing credentials from user’s browser memory, hijacking microphones to eavesdrop audio logs, or even destroying computer systems.

[Photo viaBloomberg]

Related Articles:

Hack Delays Over 100 Flights in Vietnam, Chinese Group Denies Involvement

Chinese Hackers Allegedly Attack Screens at Vietnamese Airports, Carrier Websites

Vietnamese News Sites Targeted by Hackers

Related Articles

in Tech

$189m Plan to Give 300,000 HCMC Students Tablets Draws Criticism

Last week the HCMC Department of Education proposed a plan to equip 300,000 primary students with tablets for the coming school year, reports Thanh Nien. With a pricetag of VND3 million – VND 5 m...

in Tech

'Flappy Bird' Creator To Release New Game Tomorrow

Well, Nguyen Ha Dong, the Vietnamese app developer who at one point was pulling in $55,000 per day, is officially back in the spotlight. After releasing a new version of ‘Flappy Bird’ earlier this mon...

in Tech

'Thirsty' Concrete Drinks Rainwater, Eliminates Flooding

Concrete isn't exactly a sexy topic. Even though we drive on it and build things with it, the average person seldom gives the gray stuff a second thought.

in Tech

3 Vietnamese Make “World's Most Influential Scientific Minds” List

3 Vietnamese scientists: Dam Thanh Son, Nguyen Son Binh and Nguyen Xuan Hung, have made Thomson Reuters’ list of the World’s Most Influential Scientific Minds.

in Tech

40 Years Later, Vietnam Begins Identifying Its War Dead

Martyr cemeteries are a common occurrence across Vietnam. In countless communes in every province, modest gravestones mark the resting places of Vietnam's fallen soldiers in neat, orderly rows. T...

in Tech

42m Vietnamese Use Facebook Daily, Among Highest Rates in Southeast Asia

Amongst its many existing users, companies and government entities are increasingly turning to the platform.