• 9 hours Lyft IPO: Get Ready For A Bumpy Ride
  • 12 hours Newmont Mining Teases Investors With Special Dividend
  • 15 hours Central Banks Double Down On Gold
  • 17 hours Don't Write Off Cryptocurrencies Just Yet
  • 1 day Trade In Counterfeit Goods Hits Half A Trillion Dollars
  • 2 days Tesla Struggles To Compete In European Market
  • 2 days China: The New King Of Caviar
  • 3 days Gold Mid-Tiers Rally On Fresh Earnings Reports
  • 3 days Can The British Pound Overcome Brexit?
  • 4 days Is A Gold Breakout Near?
  • 4 days Federal Reserve Downgrades U.S. Growth And Cuts Rate Hikes
  • 4 days Disney Beats Out Comcast In $71.3B Mega-Merger
  • 5 days The Feds Continue To Prop Up Equities Markets
  • 5 days Bejing's Sway In South China Sea Is Fading
  • 5 days Saudis Eye Billions As Stocks Get Emerging Market Boost
  • 5 days Airbnb In Acquisition Mode Ahead Of IPO
  • 6 days Gold Hangs At $1,300 Ahead Of Fed Meeting
  • 6 days Champagne Sales Slow As European Economic Worries Grow Louder
  • 6 days Putin Signs “Digital Iron Curtain” Into Law
  • 6 days Russian Metals Magnate Sues U.S. Over Sanctions
Crypto Firms Consolidate Amid Push For Legitimacy

Crypto Firms Consolidate Amid Push For Legitimacy

As cryptocurrency firms scramble to…

JP Morgan Launches A Cryptocurrency

JP Morgan Launches A Cryptocurrency

Just one year after JPMorgan…

Michael Kern

Michael Kern

Safehaven

Michael Kern is a newswriter and editor at Safehaven.com, Oilprice.com, and a writer at Crypto Insider. Michael has several years of experience covering cryptocurrencies, and…

Contact Author

  1. Home
  2. Cryptocurrencies
  3. Other

North Korea’s $571 Million Hacking Dynasty

Kim

A new report released by Group-iB revealed that 65 percent of the $882 million in cryptocurrency stolen from exchanges ends up in North Korea.

With sanctions from the United States and Europe continuing to weigh on Pyongyang, North Korea has reportedly turned to cryptocurrencies to generate additional revenue.

According to the report, North Korean hackers have stolen as much as $571 million since January 2017, making up nearly 5 percent of the country’s GDP.

The report notes that many of the attacks are tied directly to neighboring countries Japan and South Korea, including the $534 million hack of Japan’s CoinCheck, which has only recently resumed operations.

(Click to enlarge)

Though just a few of the attacks that have occurred over the past two years have actually been tied to a specific criminal organization, South Korea expects that North Korean hacker groups are likely responsible for many more.

The three branches of the DPRK’s hacking ecosystem

First, and most well-known, is the Lazarus Group, the supposed state-sponsored hacker group responsible for the Sony Motion Pictures hack, and according to some, the WannaCry attack which infected over 200,000 computers across 150 countries.

Lazarus has widely been blamed for many of the attacks associated with the North Korean cybercrime wave, but FireEye suggests that there may be two other groups which are casually flying under the radar.

FireEye believes that there are two groups that are specifically focused on cyber-espionage, targeting infrastructure, media outlets and the general population – the Lazarus Group and TEMP.Hermit – and one other group which is responsible for financial crime – APT38. Related: New UK Tax Plan Targets Tech Giants

Similar toolsets and even overlaps in coding have linked the three groups to one another, offering a surprising insight into how organized and complicated the North Korean government’s efforts might be. The FireEye report also uncovers how precise and patient the groups are in their attacks.

(Click to enlarge)

With these tools and techniques, FireEye noted that the first activity from APT38 could be traced all the way back to 2014, the same time that Lazarus first hit the scene. And the attacks are much further reaching than originally thought, directly targeting infrastructure and organizations in at least 12 countries.

(Click to enlarge) 

Conclusion

While many of the exact details of the three organizations tied to Pyongyang remain scares, at best, it’s becoming abundantly clear that North Korea possesses a deep understanding of technology.

Last year, FireEye also reported the country had started mining cryptocurrencies around the same time sanctions on coal trade were enacted, suggesting that the regime could be using their most abundant natural resource to generate revenue despite the economic measures weighed against it.

Additionally, South Korean media outlet, Yonhap News, notes that there has been a significant uptick in cryptojacking activity, most likely tied to North Korean hackers.

While the DPRK has fallen out of favor with many international news outlets in recent months, it’s clear the country is still very active behind the scenes.

By Michael Kern via Crypto Insider

More Top Reads From Safehaven.com:

Back to homepage

Leave a comment

Leave a comment