Cybersecurity

North Korean Hacking Group Grows Into Global Threat

Reaper mainly seeks to gather intelligence to support regime
Hackers send targets emails laced with malicious codes

Computer Data Tech Following Unprecedented Global Cyberattack — Photographer: Chris Ratcliffe/Bloomberg

Provide news feedback or report an error

Confidential tip?

Send a tip to our reporters

Site feedback:

Take our Survey

By Sam Kim (News)

February 20, 2018 at 12:30 PM UTC

Updated on

February 21, 2018 at 1:53 AM UTC

This article is for subscribers only.

North Korean cyber-spy group “Reaper” is emerging as a global threat, conducting espionage well beyond the Korean peninsula in support of Pyongyang’s military and economic interests, FireEye Inc. said.

The group, known also as APT37, in 2017 began attacking targets in Japan, Vietnam and the Middle East after having focused on its southern neighbor for years, FireEye said in a report. The hacking group -- traced to an IP address in North Korea -- now infiltrates a range of industries from electronics and aerospace to automotive and health care, the cybersecurity firm said.