North Korean Cyber Gangs Blitz the Irish

Uploaded on 2017-11-20 in NEWS-Cybersecurity News, GOVERNMENT-National, FREE TO VIEW

North Korean state-sponsored cyber gangs are launching almost daily attacks on Irish companies, banks and utilities as it emerged a syndicate associated with the Pyongyang regime is the chief suspect in the €4.3m cyber raid on Meath County Council last year.

Ireland finds itself on the front line of an escalating global cyber war as a leading IT security expert warned that North Korea, because of UN and US sanctions, has now turned to international cyber robbery as the primary means of funding its state and massive military.

Ireland will be targeted due to the number of US multinationals based there.

Defence Minister Paul Kehoe admitted a critical element of the new White Paper on Defence will be rapidly upgrading Ireland’s capability of defending against cyber-attacks.

The cost of cyber raids on Irish businesses has soared from €498,000 in 2014 to €1.7m in 2016, with analysts warning it is likely to increase exponentially over future years. PWC estimates that 44pc of all economic crimes now reported by Irish businesses involve cybercrime.

The number of cyber-attacks suffered by Irish businesses doubled between 2012 and 2016, but that figure is expected to double or even treble because of recent ransomware attacks.

Ronan Murphy, of Smarttech247, said it was vital Ireland understands that it was now firmly on the front line of the cyber battle because of the number of US multinationals based here.

“There were always certain unspoken rules in terms of cyber warfare between countries and intelligence services,” Mr Murphy said.

“But North Korea has thrown the entire rule book out the window. It is basically engaging in cyber warfare to raise funds and to cause global chaos.

“There is no safe hiding place anymore. These aren’t ordinary criminal gangs, you are essentially dealing with state cyber intelligence units.”

He said that the WannaCry ransomware attack which caused global chaos earlier this year was exploited by North Korean leader Kim Jong-un’s cyber security services, but only netted a measly €120,000 for Pyongyang because of an unforeseen escape route built into the malware.

Investigators now believe the attempted €4.3m cyber raid carried out against Meath County Council in October 2016 originated in North Korea.

The funds were frozen in a bank account in Hong Kong just minutes before they were scheduled to be transferred.

The attempted fraud was carried out on October 28 and the council admitted it was “a highly sophisticated” attack.

Cyber thieves impersonated the identity of chief executive Jackie Maguire, and issued a fake instruction to a junior council employee for the funds to be transferred overseas.

The Garda Computer Crime Bureau is now liaising with Europol and Interpol over the matter.

Mr Murphy stressed that Ireland needs to prepare itself for even more sophisticated attacks, with hundreds of attacks already taking place across Irish firms on a daily basis.

“These probing attacks are occurring almost 24/7 on Irish networks and, in most cases, the firms involved are simply not aware of it.”

Smarttech logged an incredible 21 million attacks last year – and the rate of attacks is increasing on a daily basis.

Mr Murphy said different cyber syndicates have different priorities, Chinese gangs are usually targeting healthcare data and industrial secrets, North Korean gangs, usually supported by the state’s cyber intelligence agency, are focused on stealing funds and exploiting ransomware attacks while European and Russian hackers can have multiple motives.

Mr Murphy’s firm was the first in the world to liaise with computer giant IBM over the use of the super-computer ‘Watson’ for real-time artificial intelligence-based defence against cyber criminals.

According to a nationwide cyber security awareness survey, over 171,000 businesses in the State could be vulnerable to crippling ransomware attacks.

Some 48pc of all businesses have no cyber security policy in place, with a further 27pc acknowledging that either their security needs tightening or they are completely unsecure, according to the survey carried out by Magnet Networks.

The Magnet Networks National Cyber Security Awareness Survey was carried out among 205 companies spread across all sectors and regions, giving an up-to-date sample of the business attitudes to a threat which could potentially ruin many of those who are attacked.

The survey found that 26pc of businesses have suffered from cyber-attacks in the past two years, with a further 18pc unsure if they have been affected.

The Independent:

You Might Also Read: 

Irish Law Firms Experience  50% Increase In Cyberattacks:

Only A Short Time Before Cyber-Attack Hits Finance:

Facebook’s Next New Data Center Is Coming To Ireland:  

 

« Social Media & Crisis Management
Cyber Security Insurance »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

ControlCase

ControlCase

ControlCase provide solutions that address all aspects of IT-GRCM (Governance, Risk Management and Compliance Management).

Falanx Cyber

Falanx Cyber

Falanx Cyber provides enterprise-class cyber security services and solutions. We deliver end-to-end cyber capabilities, either as specific engagements or as fully-managed services.

ESTsecurity

ESTsecurity

ESTsecurity is a leading company in cyber security providing intelligent security solutions to make world more secure.

CounterCraft

CounterCraft

The CounterCraft Cyber Deception Platform fits seamlessly into existing security strategies and delivers high-end deception for threat hunting and threat detection.

AlAnsari Technical Solutions (ATS)

AlAnsari Technical Solutions (ATS)

ATS is a Kuwait based company specialised in delivering hardware/software, Virtualisation, IP Telephony / Unified Communication, Networking and professional IT services and solutions.

NGS (UK)

NGS (UK)

NGS (UK) Ltd are independent, vendor agnostic, next generation security trusted advisors, providing all-encompassing solutions from the perimeter to the endpoint.

Eperi

Eperi

Eperi is a leading provider of Cloud Data Protection (CDP) solutions with 15 years of experience in data encryption for databases, (SaaS) applications and files.

Agio

Agio

Agio is a hybrid managed IT and cybersecurity provider servicing the financial services, health care and payments industries.

CyGlass

CyGlass

CyGlass simply and effectively identifies, detects, and responds to threats to your network without requiring any additional hardware, software, or people.

Allentis

Allentis

Allentis provide adapted solutions to ensure the security and performance of your information system.

Maxxsure

Maxxsure

Maxxsure provides a platform for executive management, leveraging proprietary technology that identifies, measures, and scores a company’s cyber risks.

Banyax

Banyax

Banyax provides 24×7 real-time Cyber Defense Center Services using the latest technology tools to provide state-of-the-art defense.

Offensive Security Manager (OSM)

Offensive Security Manager (OSM)

Offensive Security Manager is the ultimate AI software that will enforce offensive security automation, orchestration, coverage, ensure quality, and lets you manage whole process.

Francisco Partners

Francisco Partners

Francisco Partners provide capital, expertise, and support for growth-aspiring technology companies.

Mindflow

Mindflow

Mindflow is dedicated to bringing answers to the challenges the cybersecurity field and beyond face today.

Kali Linux

Kali Linux

Kali Linux is an open-source, Debian-based Linux distribution geared towards various information security tasks, such as Penetration Testing.