The U.S. Department of the Treasury has imposed sanctions on individuals and entities linked to North Korea’s cyber operations, specifically targeting the Reconnaissance General Bureau and the Andariel hacking group. These sanctions highlight North Korea’s use of cyber-enabled tactics and illegal IT worker schemes to fund its weapons development and conduct cyber espionage. #ReconnaissanceGeneralBureau #Andariel
Keypoints
- The Treasury sanctioned Song Kum Hyok for orchestrating illegal IT worker schemes involving North Korean operatives.
- North Korean hackers embedded themselves into global companies using stolen identities, posing as U.S. or foreign citizens.
- Operatives sometimes introduced malware into corporate networks after infiltration, risking sensitive infrastructure.
- Sanctions also targeted Russian facilitator Gayk Asatryan for hosting North Korean IT workers in Russia.
- The program generates revenue for North Korea’s government and supports illegal cyber activities, bypassing international sanctions.