At a glance.
- US indicts, sanctions DPRK operators in crypto-laundering campaign.
- BlackCat (ALPHV) follows Cl0p, exploiting GoAnywhere MFA vulnerability.
- Mirai botnet exploits vulnerability disclosed at Pwn2Own.
- RSAC presentation describes US response to Russian prewar and wartime cyber operations.
- An update on KillNet.
- The US Department of Homeland Security outlines cyber priorities.
US indicts, sanctions DPRK operators in crypto-laundering campaign.
The US Justice Department has announced the indictment of Sim Hyon Sop, a representative of North Korea's Foreign Trade Bank, on two conspiracy counts. Mr. Sim allegedly conspired to launder cryptocurrency as part of an effort to evade sanctions on Pyongyang. The sanctions in question are intended "to impede the development of North Korea’s ballistic missiles, weapons production, and research and development programs."
In a separate but related action, the US Department of the Treasury has sanctioned Mr. Sim and the two over-the-counter currency traders he worked with for their illegal support of North Korea's weapons programs. "The DPRK’s use of illicit facilitation networks to access the international financial system and generate revenue using virtual currency for the regime’s unlawful weapons of mass destruction(WMD) and ballistic missile programs directly threatens international security,” said Under Secretary of the Treasury for Terrorism and Financial Intelligence Brian E. Nelson. “The United States and our partners are committed to safeguarding the international financial system and preventing its use in the DPRK’s destabilizing activities, especially in light of the DPRK’s three launches of intercontinental ballistic missiles (ICBMs) this year alone.” Treasury acted, it said, in close cooperation with South Korean authorities.