Russia Is Providing North Korea With Internet Connectivity

Uploaded on 2017-12-11 in NEWS-Cybersecurity News, INTELLIGENCE-Hot Spots-Russia, INTELLIGENCE-Hot Spots-North Korea, GOVERNMENT-National, FREE TO VIEW

Following the diplomatic fallout between North Korea and China, its only major trade partner, Russia is positioning itself to be a stronger North Korean ally, reaching out to provide North Korea with an Internet connection. 

Russia may embolden North Korea to launch more destructive cyberattacks. Stronger cooperation between the two raises the possibility that they will even collaborate on cyberattacks themselves, which would be devastating for the international community.

Dyn Research have reported that Russia began providing an Internet connection to North Korea since October. The Russian-provided infrastructure gives Pyongyang 60% more bandwidth and a second connection to the outside world ; China’s Unicom company had been North Korea’s sole Internet provider since 2010. 

The construction of the new Internet connection follows a September 27th meeting between  Democratic Peoples Republic of Korea (DPRK) envoys and Russian foreign ministry officials in Moscow. Russia’s extension of an Internet connection to North Korea, as well as its reopening of a ferry route between the two, may indicate that Russia will seek sanction loopholes to strengthen their partnership.

North Korea’s turn towards Russia follows Pyongyang’s aggressive nuclear testing and vociferous behavior pushing China and its investments out of the country.

After North Korea’s sixth nuclear test, the UN Security Council passed the strictest sanctions yet on the isolated country. As a result of these sanctions, China is due to close North Korean businesses operating within China and end joint ventures between the two within 120 days.

China’s compliance with new sanctions is not the only sign of tension with the DPRK. This year, Pyongyang timed its missile and nuclear tests to correspond with international meetings hosted in China. North Korea’s actions seemingly were meant to embarrass China, who it believes is siding with Washington. 

Tensions between North Korea and China have been accelerating since Kim Jong-un took power in 2011. The following year, North Korean authorities lashed out against one of Beijing’s largest mining and steel-producing companies, Xiyang Group, with whom it had signed a $40 billion deal to build an iron ore mine. North Korean officials “used violent methods” against Xiyang staff, such as depriving them of food and water, and smashing windows. North Korea eventually annulled the contract with Xiyang, after deporting employees in the dead of night.

The warming of North Korean-Russian relations does not just coincide with the souring of North Korean relations with China. It also follows a distributed denial of service (DDoS) campaign by US Cyber Command on North Korea’s intelligence agency, the Reconnaissance General Bureau. 

According to a US official, North Korean hackers complained that the resulting spotty Internet access was interfering with their work, which as of late involves stealing hundreds of millions of dollars from international banks and companies. As increasingly strict sanctions limit legal economic opportunities for North Korea, cyber heists provide for nearly a third of the value of the isolated nation’s exports.

Russia, also increasingly isolated due to sanctions and its aggressive activity, sees an opportunity in North Korea. With little investment required on its part, Russia can incorporate North Korea into its geopolitically disruptive agenda.  

Russia’s agenda involves forcing the US and its allies to exhaust more resources on cybersecurity and tend to international conflicts. Given Russia’s own economic distress from sanctions, which have caused GDP to decline since 2013, there is a strong incentive for international partnership with North Korea. 

Supplying North Korean hackers with added bandwidth and capability to attack national banks and companies allows Russia to finance cyber-disruption. Worse, with Russian support, North Korea will feel emboldened to launch more destructive cyberattacks.

Russia and North Korea make natural allies in that they are aligned against the United States and its US allies, and it is highly possible that they have collaborated in cyber-attacks in some capacity. The US government and private security companies have identified the two as principal threats to national security based on their previous cyberattacks.
Russia has continuously used cyber methods to maintain its influence on the former Soviet area as part of hybrid warfare campaigns by combining conventional power with cyber capabilities. 

During Putin’s tenure, Estonia, Georgia, and Ukraine have been victims of Russian cyberattacks. Similarly, North Korea has been accused of numerous cybersecurity incidents, such as the Sony Pictures hack in 2014, stealing $101 million from the Bangladeshi central bank, and the worldwide WannaCry ransomware attack this year.

Thus, Russia is quietly laying the groundwork to establish itself as a stronger North Korean partner while China-North Korea relations are cooling. 

This development coincides with the restoration of a Russian-North Korean railroad project, connecting Khasan (near Vladivostok) with Rajin (a port in North Korea). In addition, on October 10th, Russia reopened a ferry route to North Korea, despite the sanctions’ calls to curtail economic cooperation between UN Security Council member states and North Korea.
While China no longer wants to be accused by the international community of supporting a rogue state, Russia is not swayed by such accusations. Both Russia and North Korea have proved they will use any means feasible to disrupt international affairs. 

Whether it is by sending unmarked soldiers across borders, occupying a neighboring country, hacking power grids, or launching ransomware attacks against hospital computers, a strong Russian-North Korea partnership presents a much graver cyber threat than ever before. 

If Russia and the North Korea collaborate to unleash more aggressive cyberattacks, and it is looking like that will be the case, the international community needs to better prepare itself.

Forbes:  

You Might Also Read:

N. Korea Is Ready For Global Cyber Conflict:

Microsoft Chief Says N. Korea Was Behind 'WannaCry':

Hillary Clinton’s Cyber Warfare Warning:
 

« The Promise & Peril Of Trump’s Cyber Strategy
Bitcoin: UK And EU Will Crackdown On Crime & Tax Evasion. »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Logpoint

Logpoint

Logpoint is a creator of innovative security platforms to empower security teams in accelerating threat detection, investigation and response with a consolidated tech stack.

VNCERT

VNCERT

VNCERT is the national Computer Emergency Response Team for Vietnam.

Cyber Threat Intelligence Network (CTIN)

Cyber Threat Intelligence Network (CTIN)

CTIN provides cyber threat intelligence services including training, platform evaluation, ISAC/ISAO systems development and counter botnet operations.

Retail & Hospitality Information Sharing & Analysis Center (RH-ISAC)

Retail & Hospitality Information Sharing & Analysis Center (RH-ISAC)

Retail & Hospitality ISAC operates as a central hub for sharing sector-specific cyber security information and intelligence.

Checksum Consultancy

Checksum Consultancy

Checksum Consultancy specializes in Information security, Risk management, and IT governance.

Mvine

Mvine

Mvine's primary business is authoring and selling Cyber-Secure Platforms for Collaboration Portals and for Identity Management as well as delivering cloud support services.

Cyemptive Technologies

Cyemptive Technologies

Cyemptive's CyberSlice technology preempts and remove threats before they take hold, in seconds, compared to other’s hours, days, weeks and even months.

Chicago Quantum Exchange (CQE)

Chicago Quantum Exchange (CQE)

Chicago Quantum Exchange is an intellectual hub and community of researchers with the common goal of advancing academic and industrial efforts in the science and engineering of quantum information.

SEMNet

SEMNet

SEMNet is an IT solutions provider and an infrastructure and security consulting firm.

Mr Backup (MRB)

Mr Backup (MRB)

MRB offers Data Protection as a Service for businesses looking to reduce the time, cost and complexity of securing your company data.

Zeva

Zeva

Zeva solves complex identity and encryption challenges for the federal government and corporations around the globe.

Issue53

Issue53

We empower organizations to thrive in the digital landscape. Strengthen your defenses, enhance resilience – Choose Issue53 for a secure and future-ready IT environment.

Tyto Athene

Tyto Athene

At Tyto Athene, we harness the power of technology to provide solutions that shape the future.

Redapt

Redapt

Redapt is an end-to-end technology solutions provider that brings clarity to a dynamic technical environment.

Sublime Security

Sublime Security

Sublime is an adaptive email security platform that combines best-in-class effectiveness with unprecedented visibility and control.

Arcfield

Arcfield

Arcfield protects the nation and its allies through innovations in systems engineering and integration, space and mission launch assurance, cybersecurity, and missile support.