Microsoft Threat Intelligence Podcast cover image

Microsoft Threat Intelligence Podcast

North Korea Threat Landscape Update

Jan 24, 2024
Sherrod DeGrippo, Greg Schloemer, and Matthew Kennedy discuss North Korean cyber operations, emphasizing their persistence, adaptability, and revenue generation through cryptocurrency theft. They explore the actions of the Lazarus group and its impact on North Korean cyber operations. The speakers also highlight Diamondsleet's software supply chain attack and the success of the Jade Sleet group in cryptocurrency thefts. They discuss North Korea's mindset of evolution, diverse techniques employed in cyber operations, and challenges of laundering stolen money. The speakers share their interests in cybersecurity and hope for regular updates on North Korea.
35:57

Podcast summary created with Snipd AI

Quick takeaways

  • North Korea's cyber operations combine persistent threats, APT tactics, and cybercrime activities focused on revenue generation through cryptocurrency theft.
  • Defending against North Korean cyber threats requires a comprehensive security program that addresses software supply chain attacks, enhances awareness, and strengthens supplier-customer relationships.

Deep dives

North Korea's Unique Cyber Threat Landscape

North Korea's cyber operations stand out for their persistence, continually evolving threats, and the mix of APT and cybercrime activities. They focus on revenue generation through cryptocurrency theft and demonstrate a scrappy and persistent approach to cyber activities. The Lazarus group, in particular, gained attention for crossing boundaries with provocative actions like the Sony Pictures attack. North Korea's cyber operations have matured through incremental changes rather than revolution, enabling them to become a first-tier APT actor. Future campaigns are expected to continue exploiting trust relationships, targeting software supply chains, and leveraging a variety of techniques, such as exploitation of vulnerabilities and social engineering.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner