North Korean Cyber Gangs Blitz the Irish

North Korean state-sponsored cyber gangs are launching almost daily attacks on Irish companies, banks and utilities as it emerged a syndicate associated with the Pyongyang regime is the chief suspect in the €4.3m cyber raid on Meath County Council last year.

Ireland finds itself on the front line of an escalating global cyber war as a leading IT security expert warned that North Korea, because of UN and US sanctions, has now turned to international cyber robbery as the primary means of funding its state and massive military.

Ireland will be targeted due to the number of US multinationals based there.

Defence Minister Paul Kehoe admitted a critical element of the new White Paper on Defence will be rapidly upgrading Ireland’s capability of defending against cyber-attacks.

The cost of cyber raids on Irish businesses has soared from €498,000 in 2014 to €1.7m in 2016, with analysts warning it is likely to increase exponentially over future years. PWC estimates that 44pc of all economic crimes now reported by Irish businesses involve cybercrime.

The number of cyber-attacks suffered by Irish businesses doubled between 2012 and 2016, but that figure is expected to double or even treble because of recent ransomware attacks.

Ronan Murphy, of Smarttech247, said it was vital Ireland understands that it was now firmly on the front line of the cyber battle because of the number of US multinationals based here.

“There were always certain unspoken rules in terms of cyber warfare between countries and intelligence services,” Mr Murphy said.

“But North Korea has thrown the entire rule book out the window. It is basically engaging in cyber warfare to raise funds and to cause global chaos.

“There is no safe hiding place anymore. These aren’t ordinary criminal gangs, you are essentially dealing with state cyber intelligence units.”

He said that the WannaCry ransomware attack which caused global chaos earlier this year was exploited by North Korean leader Kim Jong-un’s cyber security services, but only netted a measly €120,000 for Pyongyang because of an unforeseen escape route built into the malware.

Investigators now believe the attempted €4.3m cyber raid carried out against Meath County Council in October 2016 originated in North Korea.

The funds were frozen in a bank account in Hong Kong just minutes before they were scheduled to be transferred.

The attempted fraud was carried out on October 28 and the council admitted it was “a highly sophisticated” attack.

Cyber thieves impersonated the identity of chief executive Jackie Maguire, and issued a fake instruction to a junior council employee for the funds to be transferred overseas.

The Garda Computer Crime Bureau is now liaising with Europol and Interpol over the matter.

Mr Murphy stressed that Ireland needs to prepare itself for even more sophisticated attacks, with hundreds of attacks already taking place across Irish firms on a daily basis.

“These probing attacks are occurring almost 24/7 on Irish networks and, in most cases, the firms involved are simply not aware of it.”

Smarttech logged an incredible 21 million attacks last year – and the rate of attacks is increasing on a daily basis.

Mr Murphy said different cyber syndicates have different priorities, Chinese gangs are usually targeting healthcare data and industrial secrets, North Korean gangs, usually supported by the state’s cyber intelligence agency, are focused on stealing funds and exploiting ransomware attacks while European and Russian hackers can have multiple motives.

Mr Murphy’s firm was the first in the world to liaise with computer giant IBM over the use of the super-computer ‘Watson’ for real-time artificial intelligence-based defence against cyber criminals.

According to a nationwide cyber security awareness survey, over 171,000 businesses in the State could be vulnerable to crippling ransomware attacks.

Some 48pc of all businesses have no cyber security policy in place, with a further 27pc acknowledging that either their security needs tightening or they are completely unsecure, according to the survey carried out by Magnet Networks.

The Magnet Networks National Cyber Security Awareness Survey was carried out among 205 companies spread across all sectors and regions, giving an up-to-date sample of the business attitudes to a threat which could potentially ruin many of those who are attacked.

The survey found that 26pc of businesses have suffered from cyber-attacks in the past two years, with a further 18pc unsure if they have been affected.

The Independent:

You Might Also Read: 

Irish Law Firms Experience  50% Increase In Cyberattacks:

Only A Short Time Before Cyber-Attack Hits Finance:

Facebook’s Next New Data Center Is Coming To Ireland:  

 

« Social Media & Crisis Management
Cyber Security Insurance »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

CyberVista

CyberVista

CyberVista is a cybersecurity training education and workforce development company. Our mission is to eliminate the skills gap by creating job ready professionals.

Information Network Security Agency (INSA) - Ethiopia

Information Network Security Agency (INSA) - Ethiopia

INSA's vision is to realize a globally competent National Cyber capability which plays a key role in protecting the national interests of Ethiopia.

Sistem Integra (SISB)

Sistem Integra (SISB)

SISB provide IT Security Infrastructure & Development, Mechanical & Electrical Services, Fire Safety & Detection Services, Facilities Management & Application Development.

ThirdWatch

ThirdWatch

ThirdWatch is a Data Science company with real-time automated fraud prevention solutions.

Vdoo

Vdoo

Vdoo provides an end-to-end product security platform for automating all software security tasks throughout the entire product lifecycle.

Intuity

Intuity

The Intuity suite of services provides companies with a complete awareness of their security status and helps them in an efficient, efficient and sustainable improvement process.

National Initiative for Cybersecurity Education (NICE)

National Initiative for Cybersecurity Education (NICE)

NICE is a partnership between government, academia, and the private sector focused on cybersecurity education, training, and workforce development.

CM Blockchain Security Center

CM Blockchain Security Center

We are dedicated to building a healthier blockchain ecosystem, providing solutions to security technology, and helping those who practice in the area of blockchain to get insight into industry trends.

Bessemer Venture Partners (BVP)

Bessemer Venture Partners (BVP)

Bessemer Venture Partners was born from innovations that literally forged modern building and manufacturing. Today, our team of investors works with people who want to create revolutions of their own.

CYBER.ORG

CYBER.ORG

CYBER.ORG's goal is to empower educators as they prepare the next generation to succeed in the cyber workforce of tomorrow.

Envieta

Envieta

Envieta is a leader in cryptographic solutions. From server to sensor, we design and implement powerful security into new or existing infrastructure.

Urbane Security

Urbane Security

Urbane Security is a premier information security consultancy empowering the Fortune 500, small and medium enterprise, and high-tech startups.

Audea

Audea

Audea is a consultancy firm specialising in cybersecurity, risk and compliance. We provide professional services addressing all areas of Cybersecurity and GRC.

Crowe

Crowe

Crowe is a public accounting, consulting, and technology firm that combines deep industry and specialized expertise with innovation.

Xobee Networks

Xobee Networks

Xobee Networks is a Managed Service Provider of innovative, cost-effective, and cutting-edge technology solutions in California.

TeKnowledge

TeKnowledge

TeKnowledge enables governments and enterprises around the world to navigate the challenges with digital transformation today and tomorrow with elite cybersecurity protection and managed services.

S4E (Security for Everyone)

S4E (Security for Everyone)

At S4E.io, our mission is to democratize digital security, making it accessible, simple, and effective for individuals and businesses of all sizes.

Cyber Dagger

Cyber Dagger

Cyber Dagger is a cybersecurity company driven by a mission to protect digital infrastructures and close the cybersecurity skills gap.