The “Andariel” group has been compromising organisations around the globe as it attempts to get hold of sensitive and classified technical information and intellectual property data, according to the UK’s National Cyber Security Centre (NCSC).The “Andariel” group has been compromising organisations around the globe as it attempts to get hold of sensitive and classified technical information and intellectual property data, according to the UK’s National Cyber Security Centre (NCSC).
The centre, along with the FBI in the US and South Korea’s national intelligence service, have issued a joint warning and advisory note about Andariel’s actions.
They have urged critical infrastructure organisations to “stay vigilant” against such cyber operations.
It comes as the US government offers a reward of up to $10m (£7.7m) to anyone with information that helps it find members of malicious cyber groups targeting America on behalf of foreign governments.
The US state department’s rewards for justice programme is looking for Rim Jong Hyok, a North Korean national associated with Andariel, which has been active since around 2009.
The reward will be offered to any person who helps identify or locate Rim or any other actors who are found to be targeting the US.
Andariel focuses on targeting defence contractors, military organisations and governments for espionage.
Over time, the group has branched out into other sectors, targeting information on nuclear weapons and, particularly during the pandemic, organisations in the life sciences and pharmaceutical sector, according to research by cyber security company Secureworks.
