North Korea Hackers Target South Korea in Spy Campaign

A North Korean-linked hacking group known as APT37, also referred to as ScarCruft, has launched a fresh cyber-espionage campaign targeting South Korean entities with ties to national security, analysts at cybersecurity firm Genians said. The group is reportedly using phishing tactics to infiltrate organizations and extract sensitive information.

The campaign highlights ongoing cyber threats from North Korea aimed at undermining South Korean institutions. Although details surrounding the scope and impact of the latest operation remain limited, analysts indicate that the campaign is part of a persistent pattern of hostile cyber activity.

APT37 has been previously associated with intelligence-gathering missions focused on the Korean Peninsula, with a particular interest in political and military assets. The renewed activity underscores heightened tensions in the region’s digital domain and the continued use of cyber tools for strategic advantage.

Security researchers are closely monitoring the situation to assess the full extent of the operation and to mitigate further infiltration attempts.