North Korean hackers, part of a cyber unit known as Anadriel or APT45, have been conducting a global cyber espionage campaign to steal classified military secrets to support the country’s banned nuclear weapons program. The hackers, believed to be part of North Korea’s Reconnaissance General Bureau intelligence agency, have targeted defense and engineering firms worldwide, including manufacturers of tanks, submarines, naval vessels, and fighter aircraft. In the U.S., victims have included NASA, Randolph Air Force Base, and Robins Air Force Base.
To fund their operations, the hackers have used ransomware attacks targeting hospitals and healthcare companies, with one suspect, Rim Jong Hyok, charged for conspiring to access computer networks in the U.S. and money laundering. Rim is believed to be in North Korea, with the FBI offering a reward of up to $10 million for information leading to his arrest. The FBI and Justice Department have seized online accounts belonging to the hackers, including $600,000 in virtual currency that will be returned to victims.
The global cyber espionage operation highlights North Korea’s willingness to pursue its military and nuclear programs through illicit means. This is not the first time North Korean hackers have conducted such activities, as they have a long history of using covert hacking teams to steal sensitive military information. The hackers have used common phishing techniques and computer exploits to gain unauthorized access to the computer systems of targeted firms.
Photo credit
www.nbcnews.com
