The group is also identified by FireEye as APT37 and has been active since at least 2012 focusing primarily on the public and private sector…
A North Korean cyberspy group known as “Reaper” is rapidly expanding its operations and scope of capability posing a global threat to overseas networks, according to a new report from the California cybersecurity firm FireEye Inc.
The group is also identified by FireEye as APT37 and has been active since at least 2012, focusing primarily on the public and private sectors in South Korea. In 2017, the group began attacks on Japan, Vietnam, and the Middle East, according to the report.
FireEye said it had “high confidence” the activities carried out by APT37 are on behalf of the North Korean government and include use of wiper malware and zero-day vulnerabilities, where hackers exploit vulnerabilities in computer software on the same day those vulnerabilities become known, preventing developers from the opportunity to fix problems before they occur.
