Global, Security

US charges North Korean hacker for WannaCry cyberattacks

The US government has charged and sanctioned a North Korean man in the 2017 global WannaCry ransomware cyberattack and the 2014 cyberassault on Sony Corp, US officials said, according to a report in Reuters.

The charges also alleged that the North Korean hacker broke into the central bank of Bangladesh in 2016, according to a criminal complaint, said Reuters.

Park Jin Hyok worked as part of a team of hackers, also known as the Lazarus Group, to try to breach multiple other US businesses, according to the complaint. In 2016 and 2017, Park’s targets included defense contractor Lockheed Martin Corp. The complaint said there was no evidence Lockheed was breached.

[To learn more about how artificial intelligence is transforming industries, register for TahawulTech.com's Power of 4: Fourth Industrial Revolution Forum | For more stories on success and business transformation through technology subscribe to our newsletter.]

The US Treasury Department has imposed sanctions against Park and the Chinese-based front company he worked for, Chosun Expo, said the report in Reuters.

The North Korean mission to the United Nations did not immediately respond to a request for comment to Reuters.

In 2014, US officials said unnamed North Korean hackers were responsible for a major cyber attack on Sony, which resulted in leaked internal documents and data being destroyed.

The attacks came after Pyongyang sent a letter to the United Nations, demanding that Sony not move forward with the movie “The Interview” that portrayed the US-backed assassination of a character made to look like North Korean leader Kim Jong Un.

Park used a series of online personas for social media platforms, including on Facebook and Twitter, to send malicious links to individuals involved in the production of “The Interview,” the complaint said. The malicious links carried North Korean-controlled malware, reported Reuters.

In November 2014, Park allegedly launched the same style social media-focused attack against employees of AMC Theatres. The movie theater chain in some cases delayed or canceled screenings of “The Interview” nationwide, Variety at the time reported. The complaint said there was no evidence AMC Theatres was breached.

In 2017,  the WannaCry ransomware attack affected thousands of businesses across the globe through a computer virus that encrypted files on affected systems, including Britain’s National Health Service, where nonfunctional computer systems forced the cancellation of thousands of appointments.

According to Reuters, John Demers, the Assistant Attorney General of the National Security Division, said on Thursday that this marks the first time the US Justice Department has formally charged a hacker in connection with cyber crimes “sponsored” by the North Korean government.

“The department has charged, arrested and imprisoned hackers working for the governments of China, Russia and Iran. Today, we add the North Korean regime to our list, completing frankly four out of four of our principle adversaries in cyberspace.”

No North Korean government officials were referenced in the complaint by name, though it does allege the government sponsored the attacks.

The complaint was filed under seal on June 8, just days before a historic summit in Singapore between US President Donald Trump and North Korean leader Kim Jong Un, reported Reuters.

 

Previous ArticleNext Article

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

GET TAHAWULTECH.COM IN YOUR INBOX

The free newsletter covering the top industry headlines