👾APT37 (Reaper): The Overlooked North Korean Actor

By 4 IT, Cyber

👾APT37 (Reaper): The Overlooked North Korean Actor

February 20, 2018 | by FireEye
On Feb. 2, 2018, we published a blog detailing the use of an Adobe Flash zero-day vulnerability (CVE-2018-4878) by a suspected North Korean cyber espionage group that we now track as APT37 (Reaper).

Our analysis of APT37’s recent activity reveals that the group’s operations are expanding in scope and sophistication, with a toolset that includes access to zero-day vulnerabilities and wiper malware. We assess with high confidence that this activity is carried out on behalf of the North Korean government given malware development artifacts and targeting that aligns with North Korean state interests. FireEye iSIGHT Intelligence believes that APT37 is aligned with the activity publicly reported as Scarcruft and Group123

FireEye Inc

https://www.fireeye.com/blog/threat-research/2018/02/apt37-overlooked-north-korean-actor.html?utm_source=fireeye&utm_medium=hpb

More from tokioX :

  1. US Hacker: DDoS Attack Against North Korea: Hacker “P4x”
  2. Denso: Movement control of auto guided vehicles: Qubits North America / Quantum annealing machine
  3. US Treasury sanctions North Korea over Sony hack and WannaCry attack
  4. TSMC says virus that shut down its plants is a WannaCry variant
  5. 🕵April’s Most Wanted Malware: Cryptomining Malware Targeting Unpatched Server Vulnerabilities
  6. 🔐Tenable and ServiceNow Form Strategic Security Alliance to Reduce Cyber Risk
  7. 🔐NICT, 2017 Cyber ​​Attack Related · Communications Observation · Analysis Result Published