Russia Is Providing North Korea With Internet Connectivity

Following the diplomatic fallout between North Korea and China, its only major trade partner, Russia is positioning itself to be a stronger North Korean ally, reaching out to provide North Korea with an Internet connection. 

Russia may embolden North Korea to launch more destructive cyberattacks. Stronger cooperation between the two raises the possibility that they will even collaborate on cyberattacks themselves, which would be devastating for the international community.

Dyn Research have reported that Russia began providing an Internet connection to North Korea since October. The Russian-provided infrastructure gives Pyongyang 60% more bandwidth and a second connection to the outside world ; China’s Unicom company had been North Korea’s sole Internet provider since 2010. 

The construction of the new Internet connection follows a September 27th meeting between  Democratic Peoples Republic of Korea (DPRK) envoys and Russian foreign ministry officials in Moscow. Russia’s extension of an Internet connection to North Korea, as well as its reopening of a ferry route between the two, may indicate that Russia will seek sanction loopholes to strengthen their partnership.

North Korea’s turn towards Russia follows Pyongyang’s aggressive nuclear testing and vociferous behavior pushing China and its investments out of the country.

After North Korea’s sixth nuclear test, the UN Security Council passed the strictest sanctions yet on the isolated country. As a result of these sanctions, China is due to close North Korean businesses operating within China and end joint ventures between the two within 120 days.

China’s compliance with new sanctions is not the only sign of tension with the DPRK. This year, Pyongyang timed its missile and nuclear tests to correspond with international meetings hosted in China. North Korea’s actions seemingly were meant to embarrass China, who it believes is siding with Washington. 

Tensions between North Korea and China have been accelerating since Kim Jong-un took power in 2011. The following year, North Korean authorities lashed out against one of Beijing’s largest mining and steel-producing companies, Xiyang Group, with whom it had signed a $40 billion deal to build an iron ore mine. North Korean officials “used violent methods” against Xiyang staff, such as depriving them of food and water, and smashing windows. North Korea eventually annulled the contract with Xiyang, after deporting employees in the dead of night.

The warming of North Korean-Russian relations does not just coincide with the souring of North Korean relations with China. It also follows a distributed denial of service (DDoS) campaign by US Cyber Command on North Korea’s intelligence agency, the Reconnaissance General Bureau. 

According to a US official, North Korean hackers complained that the resulting spotty Internet access was interfering with their work, which as of late involves stealing hundreds of millions of dollars from international banks and companies. As increasingly strict sanctions limit legal economic opportunities for North Korea, cyber heists provide for nearly a third of the value of the isolated nation’s exports.

Russia, also increasingly isolated due to sanctions and its aggressive activity, sees an opportunity in North Korea. With little investment required on its part, Russia can incorporate North Korea into its geopolitically disruptive agenda.  

Russia’s agenda involves forcing the US and its allies to exhaust more resources on cybersecurity and tend to international conflicts. Given Russia’s own economic distress from sanctions, which have caused GDP to decline since 2013, there is a strong incentive for international partnership with North Korea. 

Supplying North Korean hackers with added bandwidth and capability to attack national banks and companies allows Russia to finance cyber-disruption. Worse, with Russian support, North Korea will feel emboldened to launch more destructive cyberattacks.

Russia and North Korea make natural allies in that they are aligned against the United States and its US allies, and it is highly possible that they have collaborated in cyber-attacks in some capacity. The US government and private security companies have identified the two as principal threats to national security based on their previous cyberattacks.
Russia has continuously used cyber methods to maintain its influence on the former Soviet area as part of hybrid warfare campaigns by combining conventional power with cyber capabilities. 

During Putin’s tenure, Estonia, Georgia, and Ukraine have been victims of Russian cyberattacks. Similarly, North Korea has been accused of numerous cybersecurity incidents, such as the Sony Pictures hack in 2014, stealing $101 million from the Bangladeshi central bank, and the worldwide WannaCry ransomware attack this year.

Thus, Russia is quietly laying the groundwork to establish itself as a stronger North Korean partner while China-North Korea relations are cooling. 

This development coincides with the restoration of a Russian-North Korean railroad project, connecting Khasan (near Vladivostok) with Rajin (a port in North Korea). In addition, on October 10th, Russia reopened a ferry route to North Korea, despite the sanctions’ calls to curtail economic cooperation between UN Security Council member states and North Korea.
While China no longer wants to be accused by the international community of supporting a rogue state, Russia is not swayed by such accusations. Both Russia and North Korea have proved they will use any means feasible to disrupt international affairs. 

Whether it is by sending unmarked soldiers across borders, occupying a neighboring country, hacking power grids, or launching ransomware attacks against hospital computers, a strong Russian-North Korea partnership presents a much graver cyber threat than ever before. 

If Russia and the North Korea collaborate to unleash more aggressive cyberattacks, and it is looking like that will be the case, the international community needs to better prepare itself.

Forbes:  

You Might Also Read:

N. Korea Is Ready For Global Cyber Conflict:

Microsoft Chief Says N. Korea Was Behind 'WannaCry':

Hillary Clinton’s Cyber Warfare Warning:
 

« The Promise & Peril Of Trump’s Cyber Strategy
Bitcoin: UK And EU Will Crackdown On Crime & Tax Evasion. »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Frazer-Nash Consultancy

Frazer-Nash Consultancy

Frazer-Nash is a leading engineering, systems and technology company. Areas of expertise include information security and cyber security.

National Cyber Security Centre (NKSC) - Lithuania

National Cyber Security Centre (NKSC) - Lithuania

NKSC is the main Lithuanian cyber security institution, responsible for unified management of cyber incidents, monitoring and control of the implementation of cyber security requirements.

PhishLabs

PhishLabs

PhishLabs provides 24/7 services that help organizations protect against the cyberattacks targeting their employees, their customers and their brands.

Snyk

Snyk

Snyk is the leader in developer security. We empower the world’s developers to build secure applications and equip security teams to meet the demands of the digital world.

CloudMask

CloudMask

CloudMask patent technology provides Dynamic Data Masking (DDM) that masks sensitive data, structured or non-structured, in real-time.

Excellium Services

Excellium Services

Excellium’s Professional Services team combines expertise and experience that complements your in-house security resources.

XPO IT Services

XPO IT Services

XPO IT Services are dedicated to providing secure, high quality IT recycling and asset disposal services.

Cyber Threat Defense (CT Defense)

Cyber Threat Defense (CT Defense)

CT Defense specialize in penetration testing and security assessments.

Corsha

Corsha

Corsha is on a mission to simplify API security and allow enterprises to embrace modernization, complex deployments, and hybrid environments with confidence.

EYE Security

EYE Security

EYE provides enterprise-grade cyber security services and cyber insurance to SMEs in Europe, Cyber Incident Response and strategic advice in board rooms.

ContraForce

ContraForce

ContraForce is a threat detection and response software providing complete visibility across cloud, network, endpoints, user, and email with the ability to target and block threats in real-time.

Tego Cyber

Tego Cyber

Tego Cyber delivers a state-of-the-art threat intelligence platform that helps enterprises deploy the proper resolution to an identified threat before the enterprise is compromised.

CertNexus

CertNexus

CertNexus is a vendor-neutral certification body, providing emerging technology certifications and micro-credentials for business, data, developer, IT, and security professionals.

Buzz Cybersecurity

Buzz Cybersecurity

Buzz Cybersecurity systems and services are designed to proactively guard against common and uncommon cyber threats.

Oasis Security

Oasis Security

Oasis is the market leading platform for non-human identity management. Our mission is to fortify cybersecurity defenses by enabling enterprises to efficiently secure non-human identities.

Federal Office for the Protection of the Constitution (BfV)

Federal Office for the Protection of the Constitution (BfV)

The Federal Office for the Protection of the Constitution (Bundesamt für Verfassungsschutz - BfV) is the domestic intelligence services of the federal government of Germany.