Left Menu
Development News Edition

UN probing 35 North Korean cyberattacks in 17 countries

PTI | United Nations | Updated: 13-08-2019 06:46 IST | Created: 13-08-2019 06:45 IST
UN probing 35 North Korean cyberattacks in 17 countries
Image Credit: Pixabay

UN experts say they are investigating at least 35 instances in 17 countries of North Koreans using cyberattacks to illegally raise money for weapons of mass destruction programs — and they are calling for sanctions against ships providing gasoline and diesel to the country. Last week, The Associated Press quoted a summary of a report from the experts which said that North Korea illegally acquired as much as USD 2 billion from its increasingly sophisticated cyber activities against financial institutions and cryptocurrency exchanges.

The lengthier version of the report, recently seen by the AP, reveals that neighboring South Korea was hardest-hit, the victim of 10 North Korean cyberattacks, followed by India with three attacks, and Bangladesh and Chile with two each. Thirteen countries suffered one attack — Costa Rica, Gambia, Guatemala, Kuwait, Liberia, Malaysia, Malta, Nigeria, Poland, Slovenia, South Africa, Tunisia and Vietnam, it said.

The experts said they are investigating the reported attacks as attempted violations of UN sanctions, which the panel monitors. The report cites three main ways that North Korean cyber hackers operate. One is attacks through the Society for Worldwide Interbank Financial Telecommunication or SWIFT system used to transfer money between banks, "with bank employee computers and infrastructure accessed to send fraudulent messages and destroy evidence."

The other two are, theft of cryptocurrency "through attacks on both exchanges and users", and "mining of cryptocurrency as a source of funds for a professional branch of the military". Experts stressed that implementing these increasingly sophisticated attacks "is low risk and high yield," often requiring just a laptop computer and access to the internet.

The report to the Security Council gives details on some of the North Korean cyberattacks as well as the country's successful efforts to evade sanctions on coal exports in addition to imports of refined petroleum products and luxury items including Mercedes Benz S-600 cars. One Mercedes Maybach S-Class limousine and other S-600s, as well as a Toyota Land Cruiser, were transferred from North Korea to Vietnam for last February's summit between the country's leader Kim Jong Un and the US.

The panel also said it obtained information that the Taesong Department Store in Pyongyang, which reopened in April and is selling luxury goods, is part of the Taesong Group which includes two entities under UN sanctions and was previously linked to procurement for North Korea's ballistic missile programs. The panel recommended sanctions against six North Korean vessels for evading sanctions and illegally carrying out ship-to-ship transfers of refined petroleum products.

It also recommended sanctions against the captain, owner, and parent company of the North Korean-flagged Wise Honest, which was detained by Indonesia in April 2018 with an illegal shipment of coal. As for North Korea's military cooperation with other countries, the experts said Iran rejected an unnamed country's allegation that two North Korean entities under sanctions maintained offices in Iran — the Korea Mining Development Trading Corporation known as KOMID, which is the country's primary arms dealer and main exporter of goods and equipment related to ballistic missiles and conventional weapons, and Saeng Pil Company.

The experts said they have requested information from Rwanda on a report that North Koreans are conducting special forces training at a military camp in Gabiro. They said that they are also waiting for a response from Uganda "to multiple inquires" about reports indicating specialized training is being conducted in the country, and KOMID and North Korean workers maintain a presence.

As examples of North Korean cyberattacks, the panel said hackers in one unnamed country accessed the infrastructure managing its entire ATM system and installed malware modifying the way transactions are processed. As a result, it forced 10,000 cash distributions to individuals working for or on behalf of North Korea "across more than 20 countries in five hours." In Chile, the experts said, North Korean hackers demonstrated "increasing sophistication in social engineering," by using LinkedIn to offer a job to an employee of the Chilean interbank network Redbanc, which connects the ATMs of all the country's banks.

According to a report from one unnamed country cited by the experts, stolen funds following one cryptocurrency attack in 2018 "were transferred through at least 5,000 separate transactions and further routed to multiple countries before eventual conversion" to currency that a government has declared legal money, "making it highly difficult to track the funds." In South Korea, the experts said, North Korean cyber actors shifted focus in 2019 to targeting cryptocurrency exchanges, some repeatedly.

The panel said South Korea's Bithumb, one of the largest cryptocurrency exchanges in the world, was reportedly attacked at least four times. It said the first two attacks in February 2017 and July 2017 each resulted in losses of approximately USD 7 million, while a June 2018 attack led to a USD 31 million loss and a March 2019 attack to a USD 20 million loss.

(This story has not been edited by Devdiscourse staff and is auto-generated from a syndicated feed.)

Download The Devdiscourse News App for Latest News.


TRENDING

OPINION / BLOG / INTERVIEW

Energy markets post-COVID 19: Recovery may take time, transition to continue

As oil markets have crashed, the experts believe the oil prices will come down drastically and continue making the energy transition a financial burden for many economies for a couple of years.  However, the market alone was never...

'Diya jalao' for COVID 19: Modi needs to practice his teachings and control fake news on social media

In his video message to the nation on Friday the Prime Minister talks about peoples collective power to win the invincible. However, he has made no concreate efforts to win over the confidence and represent the collective power of the polit...

Tourism post-COVID 19: Lessons learned, out-of-box strategies to ensure the revival

In the pre-COVID 19 period the tourism industry was seen with much hope throughout the world. However, the COVID 19 pandemic has completely paralysed the tourism industry and its dependent sectors. The tourism industry in the post-COVID 19 ...

Cybersecurity post-COVID 19: More internet means more threats, stay alert folks!

When supported by adequate digital awareness campaigns and more crackdowns on cybercrimes, increased internet usage will help more people embrace technology and better understand the risks, bringing us closer to unleashing the true potentia...

Videos

Latest News

Miracle cures? UK investigators go after fake coronavirus medicines

British authorities said on Saturday they were clamping down on bogus cures for the coronavirus, which currently has no specific licensed treatment. The Medicines and Healthcare products Regulatory Agency MHRA said it was investigating 14 f...

Brazil steelmakers shut down blast furnaces as coronavirus hurts demand

Brazil steelmaker Gerdau on Friday announced several production cuts, including temporarily shutting down one of its blast furnaces, following in the footsteps of its domestic competitors as the coronavirus outbreak has harmed demand.Overal...

Judge dismisses fantasy players' suit over MLB sign-stealing

A class-action lawsuit by daily fantasy sports players maintaining that they were cheated by the Houston Astros and Boston Red Soxs illegal sign-stealing was thrown out by a federal judge in New York on Friday. The plaintiffs maintained tha...

Trump advises voluntary mask use against coronavirus but won't wear one himself

The U.S. government is now recommending Americans wear cloth face coverings on a voluntary basis to stem the spread of the coronavirus, President Donald Trump said on Friday, adding that he himself would not use one. In a daily briefing wit...

Give Feedback