Join or Sign In

Register for your free ZDNet membership or if you are already a member, sign in using your preferred method below.

Use your email Use Linkedin Use Facebook

North Korea's history of bold cyber attacks

Many of the massive cyberattacks that have spread across the world in recent years were traced back or attributed to North Korea. Here are eleven examples.

Topic: Security
1 of 12 Pixabay/CC0 Creative Commons

North Korea’s growing criminal cyberthreat

North Korean hackers, backed by the state, are believed to be responsible for an array of bold attacks made in the name of money, or the reputation of the Democratic People's Republic of Korea regime. Some of these include, but are not limited to...

SEE: Can Russian hackers be stopped? Here's why it might take 20 years (TechRepublic cover story) | download the PDF version

2 of 12 Jytim/CC 4.0 International license

Nonghyup, 2011

An attack against South Korean farm co-op Nonghyup paralyzed the bank, leaving customers unable to access funds for over a week.

3 of 12 Kwangmo/CC 4.0 International license

South Korean banks, 2013

The operations of three major banks and two broadcasters collapsed at the same time as North Korean news agency KNCA relayed a message from North Korean's leadership, pledging to destroy the South's government.

4 of 12 CNET

Sony, 2014

The FBI blamed North Korea for a brutal cyberattack on Sony which compromised the tech company's networks and led to the leak of terabytes of information online. It is believed the attack was launched in response to Sony's planned release of, The Interview, a film which tells the satirical story of journalists recruited to assassinate Kim Jong Un.

See also: Thousands could launch Sony-style cyberattack, says ex-hacker (CNET)

5 of 12 NahidSultan/CC 4.0 International license

The Central Bank of Bangladesh, 2016

The notorious bank heist that targeted the Central Bank of Bangladesh's Federal Reserve account lead to the theft of $81 million, and was connected to the Sony breach -- and therefore North Korea -- through the malware utilized in the compromise of the SWIFT bank communications system.

6 of 12 ZDNet/CNET

WannaCry, 2017

The release of NSA tools -- including EternalBlue by the Shadow Brokers hacking group -- ultimately led to the global WannaCry ransomware attack, which debilitated companies worldwide without prejudice. It is believed that North Korea threat actors implemented the exploit in distributing the ransomware.

See also: WannaCry: The smart person's guide

7 of 12 Benh/CC 4.0 International license

US utilities, 2017

Cybersecurity firm FireEye believes that the rogue state is behind a number of attacks aimed at US electricity companies.

See also: North Korean Actors Spear Phish U.S. Electric Companies (FireEye)

8 of 12 File Photo

Energy services, 2017

A group known as Covellite, connected to North Korea, has been linked to attacks against US, European and East Asian organizations involved in consumer energy. However, in recent months, attacks against US targets appear to have been abandoned.

9 of 12 Charlie Osborne/ZDNet

Cryptocurrency exchanges, South Korea

South Korea is a common target for DPRK hackers, and cryptocurrency exchanges -- containing millions of dollars' worth of virtual assets -- are lucrative. According to South Korean officials, North Korea is responsible for the theft of "billions of won" from exchanges over the past 12 months.

10 of 12 Laremenko, Getty Images/iStockphoto

Cryptojacking, worldwide

Cybersecurity professionals have suggested that the regime's hackers have created cryptojacking malware designed to steal victim CPU power to mine cryptocurrency. Proceeds are allegedly finding their way to North Korea's Kim Il Sung University.

See also: Inside the early days of North Korea's cyberwar factory

11 of 12 McAfee

Journalists and defectors, worldwide

Malware-laden Android apps, aimed at North Korean defectors and journalists covering the regime, keep slipping through the net and appearing on Google Play.

12 of 12 Brian Karczewski/CC 3.0 license

Ontario's rail system, 2018

Metrolink, Ontario's transportation agency, claims that North Korea attempted to derail IT systems, without success.

Related Galleries

First look at the YubiKey Bio
YubiKey Bio

Related Galleries

First look at the YubiKey Bio

iVerify (version 17)
iVerify for iOS and iPadOS

Related Galleries

iVerify (version 17)

OnlyKey hardware security key

Related Galleries

OnlyKey hardware security key

SoloKeys Solo V2
Solo V2

Related Galleries

SoloKeys Solo V2

iVerify: Added security for iPhone and iPad users

Related Galleries

iVerify: Added security for iPhone and iPad users

iStorage datAshur BT hardware encrypted flash drive
iStorage datAshur BT

Related Galleries

iStorage datAshur BT hardware encrypted flash drive

Netgear BR200 small-business router
Netgear BR200

Related Galleries

Netgear BR200 small-business router