North Korean hackers have been conducting a global cyber espionage campaign to steal classified military secrets, aiming to support North Korea’s banned nuclear weapons program. This information was revealed in a joint advisory issued by the United States, Britain, and South Korea on Thursday.
Who Are the Hackers?
The hackers, known as Anadriel or APT45, have targeted or breached computer systems at various defense and engineering firms. These firms include manufacturers of tanks, submarines, naval vessels, fighter aircraft, and missile and radar systems, according to the advisory.
The advisory, co-authored by the U.S. Federal Bureau of Investigation (FBI), the U.S. National Security Agency (NSA), Britain’s National Cyber Security Centre (NCSC), and South Korea’s National Intelligence Service (NIS), warns that the threat from these hackers remains ongoing. They are targeting industry sectors worldwide, including entities in the U.S., Britain, South Korea, Japan, and India.
Lengths DPRK Will Go for Military Programs
Paul Chichester of the NCSC, part of Britain’s GCHQ spy agency, stated, “The global cyber espionage operation that we have exposed today shows the lengths that DPRK state-sponsored actors are willing to go to pursue their military and nuclear programs.”
The FBI has issued an arrest warrant for one of the alleged North Korean hackers and is offering a reward of up to $10 million for information leading to his arrest. The hacker has been charged with hacking and money laundering.
North Korea’s History of Cyber Attacks
North Korea, officially known as the Democratic People’s Republic of Korea (DPRK), has a history of using covert hacking teams to steal sensitive military information. For instance, in August last year, an elite group of North Korean hackers breached systems at NPO Mashinostroyeniya, a rocket design bureau in Reutov, near Moscow.
According to the advisory, APT45, a part of North Korea’s Reconnaissance General Bureau intelligence agency, used common phishing techniques and computer exploits. These methods trick officials at the targeted firms into giving away access to their internal computer systems.
The joint advisory from the U.S., Britain, and South Korea highlights the significant threat posed by North Korean hackers. By exposing this global cyber espionage campaign, the involved agencies aim to raise awareness and enhance defenses against such attacks, ensuring that sensitive military secrets are better protected.
Comments