Common Information
| Type | Value |
|---|---|
| Value |
APT43 |
| Category | Actor |
| Type | Threat-Actor |
| Misp Type | Cluster |
| Description | • APT43 is a prolific cyber operator that supports the interests of the North Korean regime. The group combines moderately-sophisticated technical capabilities with aggressive social engineering tactics, especially against South Korean and U.S.-based government organizations, academics, and think tanks focused on Korean peninsula geopolitical issues. • In addition to its espionage campaigns, we believe APT43 funds itself through cybercrime operations to support its primary mission of collecting strategic intelligence. • The group creates numerous spoofed and fraudulent personas for use in social engineering, as well as cover identities for purchasing operational tooling and infrastructure. • APT43 has collaborated with other North Korean espionage operators on multiple operations, underscoring the major role APT43 plays in the regime’s cyber apparatus. |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2023-04-07 | 3 | Cyber security week in review: April 7, 2023 | ||
| Details | Website | 2023-04-06 | 5 | Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group | ||
| Details | Website | 2023-04-06 | 1 | North Korea dedicates a hacking group to fund cyber crime - Cybersecurity Insiders | ||
| Details | Website | 2023-04-06 | 52 | 每周高级威胁情报解读(2023.04.06~04.13) | ||
| Details | Website | 2023-04-05 | 1 | Google TAG Warns of North Korean-linked ARCHIPELAGO Cyberattacks | ||
| Details | Website | 2023-04-05 | 1 | Google TAG Warns of North Korean-linked ARCHIPELAGO Cyberattacks | ||
| Details | Website | 2023-04-05 | 1 | Google TAG Warns of North Korean-linked ARCHIPELAGO Cyberattacks - RedPacket Security | ||
| Details | Website | 2023-04-05 | 2 | How we’re protecting users from government-backed attacks from North Korea | ||
| Details | Website | 2023-04-03 | 2 | North Korean APT43 Group Uses Cybercrime to Fund Espionage Operations | ||
| Details | Website | 2023-04-01 | 1 | Google: North Korea-Linked Hackers Target Subject Experts and Think Tanks | Cyware Hacker News | ||
| Details | Website | 2023-03-31 | 8 | Daily Threat Intelligence - March 31 - 2023 - RedPacket Security | ||
| Details | Website | 2023-03-31 | 12 | Cyber security week in review: March 31, 2023 | ||
| Details | Website | 2023-03-30 | 1 | APT43: A New Cyberthreat From North Korea | ||
| Details | Website | 2023-03-29 | 2 | Mandiant names APT43 group as North Korean operation | ||
| Details | Website | 2023-03-29 | 2 | North Korean APT43 Group Uses Cybercrime to Fund Espionage Operations | ||
| Details | Website | 2023-03-29 | 2 | North Korean APT43 Group Uses Cybercrime to Fund Espionage Operations - RedPacket Security | ||
| Details | Website | 2023-03-29 | 1 | Experts Warn of Self-Funding North Korean Group APT43 | ||
| Details | Website | 2023-03-29 | 3 | Newly exposed APT43 hacking group targeting US orgs since 2018 - RedPacket Security | ||
| Details | Website | 2023-03-29 | 3 | North Korean threat actor APT43 pivots back to strategic cyberespionage | ||
| Details | Website | 2023-03-28 | 1 | North Korea's Kimsuky Evolves into Full-Fledged, Prolific APT | ||
| Details | Website | 2023-03-28 | 1 | Meet APT43: the group that hacks, spies and steals for North Korea’s ruling elite | ||
| Details | Website | 2023-03-28 | 2 | APT43: North Korean Group Uses Cybercrime to Fund Espionage Operations | Mandiant | ||
| Details | Website | 2023-03-28 | 3 | Newly exposed APT43 hacking group targeting US orgs since 2018 | ||
| Details | Website | 2023-03-28 | 1 | Mandiant Catches Another North Korean Gov Hacker Group | ||
| Details | Website | 2023-03-27 | 49 | 安全事件周报 2023-03-27 第13周 |