News

Cyberattacks Net North Korea $2 Billion for Weapons of Mass Destruction

Giulio Saggin
Giulio Saggin
Tuesday 28 November 2023

North Korea used cyberattacks on banks and cryptocurrency exchanges to steal US$2 billion and fund its weapons of mass destruction (WMD) program.

This is one of the findings from a confidential UN report, which also stated that the attacks were "widespread and increasingly sophisticated" and that North Korea had "used cyberspace to launder the stolen money".

Attacking cryptocurrency exchanges allowed North Korea "to generate income in ways that are harder to trace and subject to less government oversight and regulation than the traditional banking sector". Furthermore, "at least 35 reported instances of (North Korean) actors attacking financial institutions, cryptocurrency exchanges and mining activity designed to earn foreign currency" are being investigated across 17 countries.

The actions of North Korea contravene the sanctions imposed on it by the UN Security Council in 2006. These included capping imports of refined petroleum products, and the report found that the "annual cap for 2019 as set by the Security Council of 500,000 barrels of the aggregate amount of refined petroleum transferred to (North Korea) had been exceeded in the first four months of 2019."

Many nations had also failed to impose financial sanctions and North Korea's "financial institutions, including designated banks, maintain more than 30 overseas representatives controlling bank accounts and facilitating transactions," enabling the country to "continue to access the international financial system."

The UN hasn't commented on the report.

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203