According to a confidential United Nations (UN) report seen by Reuters on Thursday, North Korea stole hundreds of millions of dollars worth of crypto assets in at least one major hack.
Also, the document allegedly suggests that the US previously accused North Korea of carrying out cyber-attacks to fund its nuclear and missile programs.
The document stated: “Other cyber activity focusing on stealing information and more traditional means of obtaining information and materials of value to [Democratic People’s Republic of Korea]’s prohibited programs, including […] weapons of mass destruction, continued.”
Kevin Bocek, VP of Security Strategy and Threat Intelligence at Venafi, said “the latest report from the United Nations on North Korean nuclear tests should sound the klaxon of alarm for Western businesses, especially as it specifically mentions cyber-attacks being a key source of funding.
Looking at data gathered by Venafi in June, Bocek says that it is evident that the proceeds of cyber-criminal activities from groups such as Lazarus and APT38 are being used to circumvent international sanctions in North Korea.
“This money is being funnelled directly into weapons programs. And because developing nuclear weapons is expensive, especially in the face of rising inflation and the cryptocurrency crash, companies should be on high alert that the DPRK will be looking to cash in now and help feed their weapons programs and fund ongoing weapon development.”
Code signing machine identities are also a key component of North Korean nation-state attacks, according to the executive.
Additionally, the security expert mentioned code signing machine identities as a key component of North Korean nation-state attacks.
“While the latest UN report is an important step in broadcasting this issue to the world, we still need to see governments and businesses act together and share intelligence on these attacks. This will be key to building knowledge on the importance of machine identities in security. If not, we’ll continue to see North Korean threat actors thrive.”