North Korea Is Using The Internet Like The Mafia

Uploaded on 2018-10-31 in NEWS-Cybersecurity News, INTELLIGENCE-Hot Spots-North Korea, GOVERNMENT-National, FREE TO VIEW, TECHNOLOGY--Hackers

North Korea has long been known as a hermit kingdom, but it is learning to embrace the Internet. The Asian country has “dramatically” changed its Internet use patterns, according to a new report, which could make imposing sanctions and defending American networks more difficult.

North Korea is using cyber operations to conduct low-level financial crimes and the country’s leaders are increasingly using the Internet as a part of their daily life, according to a new report from threat intelligence firm. Recorded Future

North Korean leader Kim Jong Un is quick to embrace technology and then cast it aside, directing hacking operations along the way as he runs the country “like a criminal syndicate,”according to the Recorded Future report.

One example of North Korea’s technological experimentation is its use of social media. In recent months, it appears North Korean leaders are embracing LinkedIn, although it is not clear what their goals are.

Hackers from the country have also developed “an asset-backed cryptocurrency scam,” according to the report, which helps “to raise funds for the Kim regime.”

North Korea has begun to “professionalise their use of the Internet,” and the web has become a more regular tool for top officials, according to Recorded Future. The development “will exacerbate existing challenges in sanctions enforcement and computer network defense.”

Although North Korean hackers have been accused of dramatic cyber operations that include stealing $81 million from the Bank of Bangladesh and hacking into Sony Pictures, “from a numbers prospective, those operations are a small percentage of what North Korean operators do every day,” according to Priscilla Moriuchi, the director of strategic threat development at Recorded Future.

“The majority of their average day-to-day work is this kind of low-level financial crime because they have a salary that they have to earn every year.”

There was no change in North Korean cyber activity following Kim’s June meeting with President Donald Trump, Moriuchi said.

Recorded Future’s report comes as senior US officials have identified North Korea as one of its main threats in cyberspace, and the Department of Justice has brought legal action against accused hackers.

Along with Russia, China and Iran, North Korea is “operating beyond the bounds of what we would consider reasonable,” Rob Joyce, senior adviser to the National Security Agency, said during an Oct. 23 event hosted by Palo Alto Networks. Joyce described North Korea as “a nation state stealing hard currency … they are bank robbers.”

The Department of Justice indicted Park Jin Hyok, a North Korean hacker, Sept. 6 for his role in crimes that include the WannaCry 2.0 global ransomware attack. North Korea’s government is responsible for “hundreds of millions, if not billions, of dollars’ worth of damage,” assistant attorney general John Demers said when the charges were filed.

US officials have found it is difficult to deter North Korea’s profitable hacking activity. Because North Korea is not widely connected to the Internet, there are not many digital targets for US Cyber Command, according to a former US intelligence official.

For years, US officials were cautious about hacking North Korea because a large portion of its Internet travels through China, current and former White House officials have told Fifth Domain. 

There was an apparent fear that if the Americans were caught in the act of hacking by the Chinese, officials from Beijing might think they were being targeted, instead of North Korea.

But Moriuchi said there were other ways of digitally deterring North Korea. Stopping North Korean cyber activity will require “taking them out at the knees,” she said, and treating the country’s digital operations as if it were a criminal syndicate. 

It means arresting North Korean hackers if they travel outside the country, indicting officials and working with partner law enforcement agencies.

Fifth Domain:

You Might Also Read:

N Korea Is A Bigger Cyber Threat Than Russia

« British Refuse To Co-operate With Belgian Hacking Inquiry
Machine Learning & Big Data - Where You Least Expect It »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Trend Micro

Trend Micro

Trend Micro is a leader in hybrid cloud, endpoint, and network security solutions.

Kaseya

Kaseya

Kaseya is a premier provider of unified IT management and security software for managed service providers (MSPs) and small to medium-sized businesses (SMBS).

SecureDevice

SecureDevice

SecureDevice is a Danish IT Security company.

BitRaser

BitRaser

BitRaser serves your needs for a managed & certified data erasure solution that can support internal & external corporate audit requirements with traceable reporting.

Flexera

Flexera

Flexera is reimagining the way software is bought, sold, managed and secured.

iONLINE

iONLINE

iONLINE delivers high quality IT services and solutions to businesses in Azerbaijan.

infySEC

infySEC

InfySEC is an information security services organization offering Security Technology services, Security Consulting, Security Training, Research & Development.

RCMP National Cybercrime Coordination Unit (NC3)

RCMP National Cybercrime Coordination Unit (NC3)

As set out in the Government of Canada's National Cyber Security Strategy, the RCMP has established the National Cybercrime Coordination Unit (NC3).

Traced

Traced

At Traced, our aim is to redefine mobile cyber security to provide the best possible protection to everyone against breaches of privacy and security.

Limes Security

Limes Security

Limes Security GmbH is the leading OT Security expert in the German-speaking region of Europe.

Department of Homeland Security (DHS) - USA

Department of Homeland Security (DHS) - USA

The Department of Homeland Security has a vital mission: to secure the nation from the many threats we face. Our duties are wide-ranging, but our goal is clear - keeping America safe.

Cyberani Solutions

Cyberani Solutions

Cyberani Solutions was created to fulfill the cybersecurity needs of industry and government in Saudi Arabia, and across the Middle East and North Africa regions.

CyberXposure

CyberXposure

CyberXposure has been built by a team comprising of Cyber Security Professionals and SAAS experts in data backup, disaster recovery and cyber-security.

Silverse

Silverse

At Silverse, we specialize in building a comprehensive cybersecurity journey, anchored by our extensive experience, industry expertise, and an ecosystem of trusted partners.

FatPipe Networks

FatPipe Networks

FatPipe’s network optimization solutions along with robust native security and SASE-based protection provides organizations all they need for super network performance and security.

TrustNet

TrustNet

TrustNet helps mid-to-large firms build trust through top-tier cybersecurity, compliance, and consulting—offering complete managed services all in one place.