UN Probing 30 North Korean Cyberattacks in 17 Countries

UN investigating 35 North Korean cyberattacks in 17 countries

UN investigating slew of North Korean cyberattacks on financial bodies

South Korea is by far the favorite target, suffering 10 of the attacks detailed in the report, with India next, being victim of three attacks.

A further 13 countries including Kuwait, Nigeria, Poland, and South Africa were all affected once.

Lastly, crypto exchanges and users were targeted in different instances.

As well as "quasi-legitimate" mining operations, the report investigated 'crypto-jacking', whereby North Korean hackers infect computers with malware.

According to the report, three "low risk and high yield" methods were used by the DPRK cyber actors to steal funds worth $2 billion from various crypto exchanges and banks.

The panel recommended sanctions against six North Korean vessels for evading sanctions and illegally carrying out ship-to-ship transfers of refined petroleum products. And they said they are also waiting for a response from Uganda "to multiple inquires" about reports indicating specialized training is being conducted in the country, and KOMID and North Korean workers maintain a presence.

In one of the examples of cyberattacks cited in the report, hackers accessed the infrastructure managing an unnamed country's entire ATM system and installed malware modifying the way transactions are processed.

A new more detailed report made by the United Nations shows that the organization is now investigating 35 hacks in 17 countries which might have been ordered by North Korea. In Chile, hackers used LinkedIn to "headhunt" an employee of the Chilean interbank network connecting all of the countries ATMs.

An instance was cited in the report where over 5,000 separate transactions were sent to different destinations before eventual conversion, making it hard to track these funds.

In South Korea, the North is increasingly targeting cryptocurrency exchanges for cyberattacks, the report said, with major cryptocurrency exchange Bithumb being attacked at least four times from February 2017 to March 2019.

Most recently, ZDNet reported that the US Department of Justice has formally charged a North Korean programmer for the WannaCry ransomware outbreak in addition to several other prominent cyber attacks.

Latest News