Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cyberwarfare

North Korea Gets Second Web Connection Via Russian Firm

A state-owned Russian company has opened up a second internet connection for North Korea which could strengthen Pyongyang’s cyber capabilities and undermine US efforts to isolate the regime, security experts said.

A state-owned Russian company has opened up a second internet connection for North Korea which could strengthen Pyongyang’s cyber capabilities and undermine US efforts to isolate the regime, security experts said.

The activation of the new line from TransTeleCom was first detected Sunday by analysts at Dyn Research, which monitors global internet connectivity.

The new connection supplements the existing link provided by China Unicom, which has almost exclusively routed North Korean internet traffic since 2010.

The additional line gives Pyongyang “significantly more resilience against attacks on their network infrastructure,” said Bryce Boland, the chief technology officer in the Asia-Pacific for cybersecurity firm FireEye.

The Washington Post reported earlier that the US Cyber Command had carried out attacks against hackers in North Korea aimed at cutting off their access to the Internet.

The operation ended Saturday, the report said.

North Korea has a 6,800-strong unit of trained cyberwarfare specialists, according to Seoul’s defence ministry, and has been accused of launching high-profile cyberattacks including the 2014 hacking of Sony Pictures.

RelatedU.S. Cyber Command Launched DDoS Attack Against N. Korea: Report

But with only one internet provider to rely on, the regime has often found itself vulnerable to external cyberattacks against its own network infrastructure.

North Korea suffered several internet connection failures — some which lasted for hours — shortly after the Sony attack, which many suspected to be a US retaliation.

With the alternate route from Russia, “the possibility of disconnecting North Korea from the Internet just became much more difficult,” Boland said.

Written By

AFP 2023

Click to comment

Expert Insights

Related Content

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Nation-State

The North Korean APT tracked as TA444 is either moonlighting from its previous primary purpose, expanding its attack repertoire, or is being impersonated by...

Nation-State

FBI says a North Korea-linked threat group known as Lazarus and APT38 is behind the $100 million Horizon bridge cryptocurrency heist.

Cyberwarfare

Iranian APT Moses Staff is leaking data stolen from Saudi Arabia government ministries under the recently created Abraham's Ax persona

Cybercrime

Artificial intelligence is competing in another endeavor once limited to humans — creating propaganda and disinformation.

Cyberwarfare

The UK’s NCSC has issued a security advisory to warn about spearphishing campaigns conducted by two unrelated Russian and Iranian hacker groups.

Cyberwarfare

WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...

Nation-State

A China-linked hackers are exploiting a vulnerability (CVE-2022-42475 ) in Fortinet FortiOS SSL-VPN, Mandiant claims.