After a U.N. report recently accused the North Korean regime of carrying out major cyberattacks of banks and crypto exchanges to fund its weapons of mass destruction programs, a longer version of the report has set out the claims in new detail.
As reported on Aug. 6, the earlier confidential U.N. report seen by Reuters – researched by “independent experts” and presented to the U.N. Security Council North Korea sanctions committee – suggests that North Korea has used “widespread and increasingly sophisticated” hacks to collect roughly $2 billion.
The new lengthier version of the report, seen by Associated Press, sets out that North Korea may have carried out at least 35 hacks in 17 countries and that the U.S. experts are investigating.
The UN says that South Korea bore the brunt of the efforts, having suffered 10 attacks. The nation's Bithumb cryptocurrency exchange is said to have been hacked at least four times.
India came next with three cyberattacks, while Bangladesh and Chile each had two attacks. Thirteen nations suffered one attack each, listed in the report as: Costa Rica, Gambia, Guatemala, Kuwait, Liberia, Malaysia, Malta, Nigeria, Poland, Slovenia, South Africa, Tunisia and Vietnam.
The report further describes North Korea's modus operandi, saying that the nation employs three "low risk and high yield" methods to grab illicit gains.
As well as targeting crypto exchanges and users, North Korea's hacking experts also carry out attacks through the SWIFT bank messaging network, “with bank employee computers and infrastructure accessed to send fraudulent messages and destroy evidence.”
In one attack, the hackers managed to take over the ATM network for an entire nation and force 10,000 payments to alleged North Korean operatives.
North Korea is also said to be mining cryptocurrency via illicit cryptojacking malware to fund a "professional branch of the military.”