North Korea Is Using The Internet Like The Mafia

Uploaded on 2018-10-31 in NEWS-Cybersecurity News, INTELLIGENCE-Hot Spots-North Korea, GOVERNMENT-National, FREE TO VIEW, TECHNOLOGY--Hackers

North Korea has long been known as a hermit kingdom, but it is learning to embrace the Internet. The Asian country has “dramatically” changed its Internet use patterns, according to a new report, which could make imposing sanctions and defending American networks more difficult.

North Korea is using cyber operations to conduct low-level financial crimes and the country’s leaders are increasingly using the Internet as a part of their daily life, according to a new report from threat intelligence firm. Recorded Future

North Korean leader Kim Jong Un is quick to embrace technology and then cast it aside, directing hacking operations along the way as he runs the country “like a criminal syndicate,”according to the Recorded Future report.

One example of North Korea’s technological experimentation is its use of social media. In recent months, it appears North Korean leaders are embracing LinkedIn, although it is not clear what their goals are.

Hackers from the country have also developed “an asset-backed cryptocurrency scam,” according to the report, which helps “to raise funds for the Kim regime.”

North Korea has begun to “professionalise their use of the Internet,” and the web has become a more regular tool for top officials, according to Recorded Future. The development “will exacerbate existing challenges in sanctions enforcement and computer network defense.”

Although North Korean hackers have been accused of dramatic cyber operations that include stealing $81 million from the Bank of Bangladesh and hacking into Sony Pictures, “from a numbers prospective, those operations are a small percentage of what North Korean operators do every day,” according to Priscilla Moriuchi, the director of strategic threat development at Recorded Future.

“The majority of their average day-to-day work is this kind of low-level financial crime because they have a salary that they have to earn every year.”

There was no change in North Korean cyber activity following Kim’s June meeting with President Donald Trump, Moriuchi said.

Recorded Future’s report comes as senior US officials have identified North Korea as one of its main threats in cyberspace, and the Department of Justice has brought legal action against accused hackers.

Along with Russia, China and Iran, North Korea is “operating beyond the bounds of what we would consider reasonable,” Rob Joyce, senior adviser to the National Security Agency, said during an Oct. 23 event hosted by Palo Alto Networks. Joyce described North Korea as “a nation state stealing hard currency … they are bank robbers.”

The Department of Justice indicted Park Jin Hyok, a North Korean hacker, Sept. 6 for his role in crimes that include the WannaCry 2.0 global ransomware attack. North Korea’s government is responsible for “hundreds of millions, if not billions, of dollars’ worth of damage,” assistant attorney general John Demers said when the charges were filed.

US officials have found it is difficult to deter North Korea’s profitable hacking activity. Because North Korea is not widely connected to the Internet, there are not many digital targets for US Cyber Command, according to a former US intelligence official.

For years, US officials were cautious about hacking North Korea because a large portion of its Internet travels through China, current and former White House officials have told Fifth Domain. 

There was an apparent fear that if the Americans were caught in the act of hacking by the Chinese, officials from Beijing might think they were being targeted, instead of North Korea.

But Moriuchi said there were other ways of digitally deterring North Korea. Stopping North Korean cyber activity will require “taking them out at the knees,” she said, and treating the country’s digital operations as if it were a criminal syndicate. 

It means arresting North Korean hackers if they travel outside the country, indicting officials and working with partner law enforcement agencies.

Fifth Domain:

You Might Also Read:

N Korea Is A Bigger Cyber Threat Than Russia

« British Refuse To Co-operate With Belgian Hacking Inquiry
Machine Learning & Big Data - Where You Least Expect It »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Axiomatics

Axiomatics

Axiomatics provides dynamic authorization and access control solutions to protect critical data assets.

Zymr

Zymr

Zymr specialize in cloud computing solutions including Cloud Security, Cloud Mobility, Cloud Apps, Cloud Infrastructure and Cloud Orchestration.

Cyber Command

Cyber Command

Our Managed IT service allows clients to offload the management of day-to-day computer, server, and networking support to our team of professionals.

Visa

Visa

Visa is a global payments technology company that connects consumers, businesses and banks in more than 200 countries and territories worldwide.

AppSec Labs

AppSec Labs

AppSec Labs specialise in application security. Our mission is to raise awareness in the software development world to the importance of integrating software security across the development lifecycle.

Nexus Group

Nexus Group

Nexus Group develops identity solutions for physical and digital access.

NGS (UK)

NGS (UK)

NGS (UK) Ltd are independent, vendor agnostic, next generation security trusted advisors, providing all-encompassing solutions from the perimeter to the endpoint.

Vaadata

Vaadata

Vaadata are experts in ethical hacking. We secure your web, mobile and IoT platforms.

Prompt

Prompt

Prompt supports the creation of partnerships and the setting up of industrial-institutional applied R&D projects for all ICT sectors.

6WIND

6WIND

6WIND deliver virtualized, cloud-native, distributed high performance & secure networking software solutions to support new applications such as 5G, IoT, SD-WAN.

PROVINTELL Cyber Security

PROVINTELL Cyber Security

PROVINTELL is a Managed Security Service Provider (MSSP) specialising in Next-Gen Cyber Defense and Response to detect and respond to threats.

Cybit

Cybit

Cybit is the one-stop-shop for digital transformation that scales in line with your growth.

Texaport

Texaport

Texaport's vision is to be the trusted partner of choice for organisations seeking comprehensive IT management and cutting-edge security solutions.

Argantic

Argantic

Argantic aims to help organisations thrive and reach their full potential in a modern cloud-centric era.

DataKrypto

DataKrypto

DataKrypto’s advanced data encryption solutions protect data throughout its lifecycle.

ThreatMate

ThreatMate

ThreatMate empowers businesses with comprehensive tools to detect, protect, and remediate against cyber threats.