UN investigating 35 North Korean cyberattacks in 17 countries

Cheryl Sanders
August 13, 2019

The report which was released on August 6, was researched by "independent experts" and submitted to the U.N. Security Council North Korea sanctions committee pointing out the fact that the country made use of "widespread and increasingly sophisticated" hacks to gather $2 billion.

Among the total 35 incidents, 10 involved South Korea, followed by India with three and Bangladesh and Chile with two each, the Associated Press said, citing a report submitted by United Nations experts to the Security Council.

MyBroadband also previously reported that the WannaCry ransomware attack which hit several South African companies, including Telkom, was linked to North Korean attackers. Via SWIFT (Society for Worldwide Interbank Financial Telecommunication) system, "with bank employee computers and infrastructure accessed to send fraudulent messages and destroy evidence"; 2.

North Korean hackers have also been sneaking mining scripts onto foreign computers to surreptitiously mine cryptocurrency for some time.

Detailed information about the victims of the alleged North Korean cyberattacks on different nations has been stated in a broader report as published by Associated Press today.

Due to its proximity, history, and number of crypto exchanges, South Korea was the country that suffered the most hacks, with at least 10 attacks recorded so far. As a result, it forced 10,000 cash distributions to individuals working for or on behalf of North Korea "across more than 20 countries in five hours".

According to a report from one unnamed country cited by the experts, stolen funds following one cryptocurrency attack in 2018 "were transferred through at least 5,000 separate transactions and further routed to multiple countries before eventual conversion" to currency that a government has declared legal money, "making it highly hard to track the funds".

The panel stated that one of South Korea's largest cryptocurrency exchanges, Bithumb, was targeted on multiple occasions.

According to the report, one of the ways in which the hackers operate is by launching attacks on both cryptocurrency exchanges and users to take control of cryptocurrency wallets with the aim to steal valuable cryptocurrencies like bitcoins. In one instance, malware mining Monero was sending the proceeds to servers at Kim Il-Sung university in Pyong Yang.

Other reports by iNewsToday