Russia Is Providing North Korea With Internet Connectivity

Following the diplomatic fallout between North Korea and China, its only major trade partner, Russia is positioning itself to be a stronger North Korean ally, reaching out to provide North Korea with an Internet connection. 

Russia may embolden North Korea to launch more destructive cyberattacks. Stronger cooperation between the two raises the possibility that they will even collaborate on cyberattacks themselves, which would be devastating for the international community.

Dyn Research have reported that Russia began providing an Internet connection to North Korea since October. The Russian-provided infrastructure gives Pyongyang 60% more bandwidth and a second connection to the outside world ; China’s Unicom company had been North Korea’s sole Internet provider since 2010. 

The construction of the new Internet connection follows a September 27th meeting between  Democratic Peoples Republic of Korea (DPRK) envoys and Russian foreign ministry officials in Moscow. Russia’s extension of an Internet connection to North Korea, as well as its reopening of a ferry route between the two, may indicate that Russia will seek sanction loopholes to strengthen their partnership.

North Korea’s turn towards Russia follows Pyongyang’s aggressive nuclear testing and vociferous behavior pushing China and its investments out of the country.

After North Korea’s sixth nuclear test, the UN Security Council passed the strictest sanctions yet on the isolated country. As a result of these sanctions, China is due to close North Korean businesses operating within China and end joint ventures between the two within 120 days.

China’s compliance with new sanctions is not the only sign of tension with the DPRK. This year, Pyongyang timed its missile and nuclear tests to correspond with international meetings hosted in China. North Korea’s actions seemingly were meant to embarrass China, who it believes is siding with Washington. 

Tensions between North Korea and China have been accelerating since Kim Jong-un took power in 2011. The following year, North Korean authorities lashed out against one of Beijing’s largest mining and steel-producing companies, Xiyang Group, with whom it had signed a $40 billion deal to build an iron ore mine. North Korean officials “used violent methods” against Xiyang staff, such as depriving them of food and water, and smashing windows. North Korea eventually annulled the contract with Xiyang, after deporting employees in the dead of night.

The warming of North Korean-Russian relations does not just coincide with the souring of North Korean relations with China. It also follows a distributed denial of service (DDoS) campaign by US Cyber Command on North Korea’s intelligence agency, the Reconnaissance General Bureau. 

According to a US official, North Korean hackers complained that the resulting spotty Internet access was interfering with their work, which as of late involves stealing hundreds of millions of dollars from international banks and companies. As increasingly strict sanctions limit legal economic opportunities for North Korea, cyber heists provide for nearly a third of the value of the isolated nation’s exports.

Russia, also increasingly isolated due to sanctions and its aggressive activity, sees an opportunity in North Korea. With little investment required on its part, Russia can incorporate North Korea into its geopolitically disruptive agenda.  

Russia’s agenda involves forcing the US and its allies to exhaust more resources on cybersecurity and tend to international conflicts. Given Russia’s own economic distress from sanctions, which have caused GDP to decline since 2013, there is a strong incentive for international partnership with North Korea. 

Supplying North Korean hackers with added bandwidth and capability to attack national banks and companies allows Russia to finance cyber-disruption. Worse, with Russian support, North Korea will feel emboldened to launch more destructive cyberattacks.

Russia and North Korea make natural allies in that they are aligned against the United States and its US allies, and it is highly possible that they have collaborated in cyber-attacks in some capacity. The US government and private security companies have identified the two as principal threats to national security based on their previous cyberattacks.
Russia has continuously used cyber methods to maintain its influence on the former Soviet area as part of hybrid warfare campaigns by combining conventional power with cyber capabilities. 

During Putin’s tenure, Estonia, Georgia, and Ukraine have been victims of Russian cyberattacks. Similarly, North Korea has been accused of numerous cybersecurity incidents, such as the Sony Pictures hack in 2014, stealing $101 million from the Bangladeshi central bank, and the worldwide WannaCry ransomware attack this year.

Thus, Russia is quietly laying the groundwork to establish itself as a stronger North Korean partner while China-North Korea relations are cooling. 

This development coincides with the restoration of a Russian-North Korean railroad project, connecting Khasan (near Vladivostok) with Rajin (a port in North Korea). In addition, on October 10th, Russia reopened a ferry route to North Korea, despite the sanctions’ calls to curtail economic cooperation between UN Security Council member states and North Korea.
While China no longer wants to be accused by the international community of supporting a rogue state, Russia is not swayed by such accusations. Both Russia and North Korea have proved they will use any means feasible to disrupt international affairs. 

Whether it is by sending unmarked soldiers across borders, occupying a neighboring country, hacking power grids, or launching ransomware attacks against hospital computers, a strong Russian-North Korea partnership presents a much graver cyber threat than ever before. 

If Russia and the North Korea collaborate to unleash more aggressive cyberattacks, and it is looking like that will be the case, the international community needs to better prepare itself.

Forbes:  

You Might Also Read:

N. Korea Is Ready For Global Cyber Conflict:

Microsoft Chief Says N. Korea Was Behind 'WannaCry':

Hillary Clinton’s Cyber Warfare Warning:
 

« The Promise & Peril Of Trump’s Cyber Strategy
Bitcoin: UK And EU Will Crackdown On Crime & Tax Evasion. »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Avanan

Avanan

Avanan is The Cloud Security Platform. Protect all your SaaS applications using tools from over 60 industry-leading vendors in just one click.

6cure

6cure

The 6cure Threat Protection solution eliminates malicious traffic to critical services in real time and protects against DDoS attacks.

Ministry of Defence Georgia - Cyber Security Bureau

Ministry of Defence Georgia - Cyber Security Bureau

The aim of the Cyber Security Bureau is to establish and develop stable, effective and secure Information and Communication Technology systems for the Civil Office of MoD of Georgia.

CyberDef

CyberDef

CyberDef is a consulting company specialising in cyber defence services for small and medium enterprises.

Cybertekpro

Cybertekpro

Cybertekpro is a specialist insurance broker providing Cyber Liability insurance and cyber risk assessment services.

Optiv

Optiv

Optiv is a market-leading provider of end-to-end cyber security solutions. We help clients plan, build and run successful cyber security programs that achieve business objectives.

Honeynet Project

Honeynet Project

The Honeynet Project is a leading international non-profit security research organization, dedicated to investigating the latest attacks and developing open source security tools.

Hornetsecurity

Hornetsecurity

Meet Hornetsecurity – Leading Cloud Email Security Provider. We protect global organizations so you can focus on what you do best.

New Zealand Internet Task Force (NZITF)

New Zealand Internet Task Force (NZITF)

The New Zealand Internet Task Force (NZITF) is a non-profit with the mission of improving the cyber security posture of New Zealand.

Cutting Edge Technologies (CE Tech)

Cutting Edge Technologies (CE Tech)

CE Tech is a Next Generation Technology Partner providing advanced technology infrastructure solutions through partnerships with leading technology providers.

Oxford Internet Institute - University of Oxford

Oxford Internet Institute - University of Oxford

The Oxford Internet Institute is a multidisciplinary research and teaching department of the University of Oxford, dedicated to the social science of the Internet.

Cymune

Cymune

At Cymune we help businesses to fight against cybercrime, protect patented data and diminish security risks.

Ekco

Ekco

Ekco is one of Europe’s leading managed cloud providers. With a network of infrastructure and security specialists across Europe, we’ve perfected our approach to supporting digital transformation.

CyberloQ Technologies

CyberloQ Technologies

CyberloQ Secure is a cybersecurity solution that enables clients to implement highly robust Multi-Factor Authentication (MFA) that includes client-defined location-based geofencing constraints.

Disecto Technologies

Disecto Technologies

At Disecto, we provide SaaS based Data Discovery, Classification and a remediation solution for data privacy compliance.

Staris

Staris

Human based defense is dead. Staris is reinventing application security for an increasingly AI driven world.