[Unnamed groups: North Korea] - Threat Group Cards: A Threat
Actor Encyclopedia
Archived: 2026-04-05 13:14:02 UTC
 APT group: [Unnamed groups: North Korea]
Names [Unnamed groups: North Korea] (?)
Country North Korea
Motivation Information theft and espionage
First seen 2019
Description
These are reported APT activities attributed to a country, but not to an individual
threat group.
Observed Countries: Worldwide.
Tools used
Operations performed
Aug 2019
Suspected North Korean Cyber Espionage Campaign Targets Multiple
Foreign Ministries and Think Tanks
Apr 2024
Operation “DEV#POPPER”
Analysis of DEV#POPPER: New Attack Campaign Targeting
Software Developers Likely Associated With North Korean Threat
Actors
Jul 2024
Research Update: Threat Actors Behind the DEV#POPPER Campaign
Have Retooled and are Continuing to Target Software Developers via
Social Engineering
https://apt.etda.or.th/cgi-bin/showcard.cgi?u=42a46962-999d-4cd2-bde5-c842e3efdd22
Page 1 of 3

Aug 2024
South Korea says DPRK hackers stole spy plane technical data
Oct 2024
APT Actors Embed Malware within macOS Flutter Applications
Counter operations Jan 2019
Justice Department Announces Court-Authorized Efforts to Map and
Disrupt Botnet Used by North Korean Hackers
Information
Last change to this card: 27 June 2025
Download this actor card in PDF or JSON format
↑
https://apt.etda.or.th/cgi-bin/showcard.cgi?u=42a46962-999d-4cd2-bde5-c842e3efdd22
Page 2 of 3

Source: https://apt.etda.or.th/cgi-bin/showcard.cgi?u=42a46962-999d-4cd2-bde5-c842e3efdd22
https://apt.etda.or.th/cgi-bin/showcard.cgi?u=42a46962-999d-4cd2-bde5-c842e3efdd22
Page 3 of 3