The North Korean APT37 hacking group uses a new 'FadeStealer' information-stealing malware containing a 'wiretapping' feature, allowing the threat actor to snoop and record from victims' microphones.
APT37, also known as StarCruft, Reaper, or RedEyes, is believed to be a state-sponsored hacking group with a long history of conducting cyber espionage attacks aligned with North Korean interests. These attacks target North Korean defectors, educational institutions, and EU-based organizations.
In the past, the hackers were known to utilize custom malware called '
Dolphin' and '
M2RAT' to execute commands and steal data, credentials, and screenshots from Windows devices and even connected mobile phones.
