The government of North Korea has, over the last few years, been largely cut off from the global economy due to their civil rights abuses, intercontinental ballistic missile launches, and nuclear weapons development. To attempt to feed their starving population and maintain control, they’ve now turned to hacking cryptocurrency.
The North Korean government is no stranger to state-sponsored hacking and is well known through DDos attacks on U.S. as well as South Korean websites. The North Korean regime is also suspected of being responsible for the infamous 2014 Sony hack.
2017 saw the shift in North Korean tactics from harassment and data theft, to financial cybercrimes. According to a report, the Lazarus Group, one of North Korea’s most notorious state-sponsored hacking collectives, has begun hacking South Korean cryptocurrency exchanges through phishing and spearphishing attacks on both individual users and employees of the exchanges. Targeted exchanges included Youbit and Bithumb.
In addition to email phishing, North Korea is assumed to have been behind 2017’s WannaCry attacks. WannaCry was a traditional ransomware attack, but instead of requesting wired money in exchange for unlocking the affected computers, the hackers requested cryptocurrency. While mostly unsuccessful, the series of attacks were able to garner $120,000 in Bitcoin for the beleaguered regime.
North Korea has also began mining cryptocurrency through a web-based Monero mining software installed on hacked servers. This practice was mainly carried out by two other North Korean hacking groups called Bluenorroff and Andariel.
The shift in tactics of using cryptocurrency to further North Korean aims brings into focus the South Korean government’s recent efforts to stifle the growth of crypto. Given the nature of cryptocurrency and blockchain technology, it remains to be seen how effective this and other efforts by the civilized world will have on this new trend.
About McCann Global:
In today’s complex legal cases, evidence is rarely singularly digital or traditional, but begins in one realm and quickly cross over into the other. The days of an investigation involving merely taking statements and photocopying documents are all but things of the past. Modern evidence gathering requires the agility to go where the evidence leads, no matter the source.
This not only means overcoming the challenge of understanding the ever-evolving web of digital evidence, but owning the entire evidentiary space; The nexus of both the digital and the non-digital.
McCann Cyber runs the table in this space. We either have the digital or traditional expert you need on staff, or we know that expert…. personally. McCann operates its own dedicated state of the art digital forensics lab, staffed with certified technicians, supplemented with a former cyber prosecutor, veteran law enforcement investigators, government cybersecurity experts, and certified fraud examiners. McCann is the only turnkey solution for the gathering, processing, analyzing, and reporting all types of evidence, no matter the source. Our team, drawn from both government service and private industry, has the resources, knowledge, and experience to provide expert testimony ensuring the evidence is both relevant and defensible in all proceedings.
McCann Cyber IS that nexus.