US, UK Warn of North Korean Hackers Seeking Nuclear Secrets
The UK, US and South Korea have raised an alarm that North Korean hackers are attempting to steal nuclear and military secrets from governments and private companies around the world.
They say the group - known by the names Andariel and Onyx Sleet - is targeting defence, aerospace, nuclear and engineering entities to obtain classified information, with the aim of advancing Pyongyang’s military and nuclear programs and ambitions.
Major countries targeted by the group, which has been seeking information on uranium processing, tanks, submarines and torpedoes are UK, US, South Korea, Japan, India.
US air force bases, Nasa and defence companies are said to have been targeted.
This alarm is worrisome because of its impact both on sensitive technology and every-day life.
The US says the group funds its espionage activity through ransomware operations against US healthcare entities.
Paul Chichester, director of operations for the UK's National Cyber Security Centre (NCSC), an arm of GCHQ, stated: "The global cyber espionage operation we have uncovered today highlights the extent to which DPRK state-sponsored actors will go to advance their military and nuclear programs.
"This should serve as a reminder to critical infrastructure operators of the importance of safeguarding sensitive information and intellectual property on their systems to prevent theft and misuse."
The NCSC has determined that Andariel is part of North Korea's Reconnaissance General Bureau (RGB) 3rd Bureau.
A joint advisory issued by the US, UK, and South Korea offers guidance to help defend against North Korean actors, who have also been targeting information on robot machinery, mechanical arms, and 3D printing components.
“This indictment showcases that North Korean threats groups also pose a serious threat to citizens’ everyday lives and can’t be ignored or disregarded,” Michael Barnhart, Mandiant Principal Analyst at Google Cloud said.
“Their targeting of hospitals to generate revenue and fund their operations demonstrates a relentless focus on fulfilling their priority mission of intelligence gathering, regardless of the potential consequences it may have on human lives.”
This is just the latest in a series of warnings about North Korean hackers over the years.
Some of the most high profile cyber incidents have been linked to the country, including an attack on Sony Pictures in 2014 in retaliation for a Hollywood comedy film that depicted the assassination of North Korean leader Kim Jong Un.
North Korea is also known for the activities of Lazarus Group which has carried out major thefts of millions of dollars.
