GUIDANCE ON THE NORTH KOREAN CYBER THREAT
The U.S. Departments of State, the Treasury, and Homeland Security, and the Federal Bureau of Investigation are issuing this advisory as a comprehensive resource on the North Korean cyber threat for the international community, network defenders, and the public.
The advisory highlights the cyber threat posed by North Korea – formally known as the Democratic People’s Republic of Korea (DPRK) – and provides recommended steps to mitigate the threat.
The DPRK’s malicious cyber activities threaten the United States and the broader international community and, in particular, pose a significant threat to the integrity and stability of the international financial system.
Measures to Counter the DPRK Cyber Threat are as follows:
TT-CSIRT strongly urge governments, industry, civil society, and individuals to take all relevant actions below to protect themselves from and counter the DPRK cyber threat:
- Raise Awareness of the DPRK Cyber Threat
- Share Technical Information of the DPRK Cyber Threat
- Implement and Promote Cyber security Best Practices
- Notify Law Enforcement
- Strengthen Anti-Money Laundering (AML) / Countering the Financing of Terrorism (CFT) / Counter-Proliferation Financing (CPF) Compliance
TTCSIRT encourages all organisations to review the CISA Alert (AA20-106A) by referring to the following link for a comprehensive detailing of the aforementioned threats and mitigations:
