On this week's episode of The Microsoft Threat Intelligence Podcast, Sherrod DeGrippo is joined by Greg Schloemer and Matthew Kennedy. Sherrod, Greg, and Matthew discuss North Korean cyber operations, highlighting the unique aspects that set North Korea apart, emphasizing North Korea's persistence, adaptability, and the blending of APT and cybercrime elements, mainly focusing on revenue generation through activities like cryptocurrency theft. The discussion touches on the notorious Lazarus group, known for the Sony Pictures attack and WannaCry, and how their actions captured global attention. Sherrod, Greg, and Matthew also share personal insight into why they're drawn to this particular area of cybersecurity, offering listeners a unique perspective on the motivations and passions driving those at the forefront of defending our digital world.  

In this episode you’ll learn:      

• The evolution of North Korean cyber operations 
• How cryptocurrency theft is used as a means to support the state  
• North Korea's unique approach to cyber operations and strategic evolution over time 

Some questions we ask:     

• How much work have you put into becoming a blockchain and cryptocurrency expert? 
• What challenges arise in defending against these specific software supply chain attacks? 
• Why are you interested in working on North Korea-related cybersecurity? 

Resources:  

View Greg Schloemer on LinkedIn  

View Matthew Kennedy on LinkedIn   

View Sherrod DeGrippo on LinkedIn  

Diamond Sleet supply chain compromise distributes a modified CyberLink installer 

Related Microsoft Podcasts:                   

• Afternoon Cyber Tea with Ann Johnson 
• The BlueHat Podcast 
• Uncovering Hidden Risks     

Discover and follow other Microsoft podcasts at microsoft.com/podcasts  

Get the latest threat intelligence insights and guidance at Microsoft Security Insider

The Microsoft Threat Intelligence Podcast is produced by Microsoft and distributed as part of N2K media network.