North Korean Cyber Gangs Blitz the Irish

Uploaded on 2017-11-20 in NEWS-Cybersecurity News, GOVERNMENT-National, FREE TO VIEW

North Korean state-sponsored cyber gangs are launching almost daily attacks on Irish companies, banks and utilities as it emerged a syndicate associated with the Pyongyang regime is the chief suspect in the €4.3m cyber raid on Meath County Council last year.

Ireland finds itself on the front line of an escalating global cyber war as a leading IT security expert warned that North Korea, because of UN and US sanctions, has now turned to international cyber robbery as the primary means of funding its state and massive military.

Ireland will be targeted due to the number of US multinationals based there.

Defence Minister Paul Kehoe admitted a critical element of the new White Paper on Defence will be rapidly upgrading Ireland’s capability of defending against cyber-attacks.

The cost of cyber raids on Irish businesses has soared from €498,000 in 2014 to €1.7m in 2016, with analysts warning it is likely to increase exponentially over future years. PWC estimates that 44pc of all economic crimes now reported by Irish businesses involve cybercrime.

The number of cyber-attacks suffered by Irish businesses doubled between 2012 and 2016, but that figure is expected to double or even treble because of recent ransomware attacks.

Ronan Murphy, of Smarttech247, said it was vital Ireland understands that it was now firmly on the front line of the cyber battle because of the number of US multinationals based here.

“There were always certain unspoken rules in terms of cyber warfare between countries and intelligence services,” Mr Murphy said.

“But North Korea has thrown the entire rule book out the window. It is basically engaging in cyber warfare to raise funds and to cause global chaos.

“There is no safe hiding place anymore. These aren’t ordinary criminal gangs, you are essentially dealing with state cyber intelligence units.”

He said that the WannaCry ransomware attack which caused global chaos earlier this year was exploited by North Korean leader Kim Jong-un’s cyber security services, but only netted a measly €120,000 for Pyongyang because of an unforeseen escape route built into the malware.

Investigators now believe the attempted €4.3m cyber raid carried out against Meath County Council in October 2016 originated in North Korea.

The funds were frozen in a bank account in Hong Kong just minutes before they were scheduled to be transferred.

The attempted fraud was carried out on October 28 and the council admitted it was “a highly sophisticated” attack.

Cyber thieves impersonated the identity of chief executive Jackie Maguire, and issued a fake instruction to a junior council employee for the funds to be transferred overseas.

The Garda Computer Crime Bureau is now liaising with Europol and Interpol over the matter.

Mr Murphy stressed that Ireland needs to prepare itself for even more sophisticated attacks, with hundreds of attacks already taking place across Irish firms on a daily basis.

“These probing attacks are occurring almost 24/7 on Irish networks and, in most cases, the firms involved are simply not aware of it.”

Smarttech logged an incredible 21 million attacks last year – and the rate of attacks is increasing on a daily basis.

Mr Murphy said different cyber syndicates have different priorities, Chinese gangs are usually targeting healthcare data and industrial secrets, North Korean gangs, usually supported by the state’s cyber intelligence agency, are focused on stealing funds and exploiting ransomware attacks while European and Russian hackers can have multiple motives.

Mr Murphy’s firm was the first in the world to liaise with computer giant IBM over the use of the super-computer ‘Watson’ for real-time artificial intelligence-based defence against cyber criminals.

According to a nationwide cyber security awareness survey, over 171,000 businesses in the State could be vulnerable to crippling ransomware attacks.

Some 48pc of all businesses have no cyber security policy in place, with a further 27pc acknowledging that either their security needs tightening or they are completely unsecure, according to the survey carried out by Magnet Networks.

The Magnet Networks National Cyber Security Awareness Survey was carried out among 205 companies spread across all sectors and regions, giving an up-to-date sample of the business attitudes to a threat which could potentially ruin many of those who are attacked.

The survey found that 26pc of businesses have suffered from cyber-attacks in the past two years, with a further 18pc unsure if they have been affected.

The Independent:

You Might Also Read: 

Irish Law Firms Experience  50% Increase In Cyberattacks:

Only A Short Time Before Cyber-Attack Hits Finance:

Facebook’s Next New Data Center Is Coming To Ireland:  

 

« Social Media & Crisis Management
Cyber Security Insurance »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Quttera

Quttera

Quttera provides Website Security Solutions for Small & Medium Businesses, Enterprises and Organizations.

Atlantic Council

Atlantic Council

The Atlantic Council's Cyber Statecraft Initiative focuses on international cooperation, competition, and conflict in cyberspace.

Cyber, Space, & Intelligence Association (CSIA)

Cyber, Space, & Intelligence Association (CSIA)

CSIA focuses on issues critical to Cyber Security, Military Space and Intelligence.

CybergymIEC

CybergymIEC

CybergymIEC is a global leader in cyber defense solutions and training services.

CommuniTake

CommuniTake

CommuniTake builds security, enablement, and management solutions to provide people and organizations with better, and more secure mobile device use.

DefenseStorm

DefenseStorm

DefenseStorm is a Security Data Platform that watches everything on your network and matches it to your policies, providing cybersecurity management that is safe, compliant and cost effective.

Virsec Systems

Virsec Systems

Virsec detects and remediates previously “indefensible” advanced memory-based attacks on critical applications and server endpoints.

7 Elements

7 Elements

7 Elements is an independent IT security testing company providing expertise in technical information assurance through security testing, incident response and consultancy.

Computing Technology Industry Association (CompTIA)

Computing Technology Industry Association (CompTIA)

CompTIA is dedicated to advancing industry growth through its educational programs, market research, networking events, professional certifications, and public policy advocacy.

CYE

CYE

Utilizing data, numbers, and facts, CYE helps security leaders know what business assets are at risk and execute cost-effective remediation projects for optimal risk prevention.

Concordium

Concordium

Concordium aims to build the world’s leading open-source, permissionless, and decentralized blockchain with built-in user identity at the protocol level.

Transmit Security

Transmit Security

The Transmit Security Platform provides a solution for managing identity across applications while maintaining security and usability.

Island

Island

Island puts the enterprise in complete control of the browser, delivering a level of governance, visibility, and productivity that simply weren’t possible before.

ShellBoxes

ShellBoxes

ShellBoxes are a leading Web3 company focused on providing top-notch blockchain security and development services.

Converged Communication Solutions

Converged Communication Solutions

Converged is an independent Internet Service Provider, telephony, IT support and security specialist.

Iron EagleX

Iron EagleX

Iron EagleX deliver engineering solutions in cloud computing, big data, cyber, and machine learning technologies to US Government customers.