Andariel, a North Korean cyber espionage group active since 2009, is known for its evolution from destructive attacks to specialized cyber espionage and ransomware operations. This group poses a significant and ongoing threat to various industry sectors worldwide. Initially targeting government and defense sectors, it now also focuses on critical infrastructure, and healthcare. Its unique malware and custom tools set it apart from other North Korean operators. Andariel’s evolving operations reflect the regime’s changing priorities and domestic needs.
What’s new on HivePro
Get through updates and upcoming events, and more directly in your inbox