March 25, 2022

How to follow North Korean hackers

By: Jason Bartlett

While the open and public nature of blockchain technology allows for more visibility into online transactions compared to traditional financial institutions, like banks, cryptocurrency exchanges often lack rigorous know-your-customer (KYC) and anti-money laundering protocols that are crucial in curbing cyber-enabled financial crime. North Korean hackers are a prime example of how bad actors can exploit these vulnerabilities to finance illicit activity, such as nuclear weapons development.

As outlined in a new report released by the Center for a New American Security (CNAS), Pyongyang continues to enjoy high overall success in infiltrating cryptocurrency exchanges in order to steal, launder, and liquidate funds for its nuclear weapons programs. The report also provides a snapshot of key policy oversights within the regulatory environment in the crypto space of central stakeholders and countries, such as China, the US, and South Korea, as well as a prospective look into the future of North Korea-led crypto hacks. How can the US strengthen its cyber resilience against these efforts?

The rate by which cryptocurrency and blockchain technology evolves continues to far outpace the rate by which national governments and international institutions are able to regulate and understand it. This is a major vulnerability that North Korean hackers continue to exploit.

The main impetus for this report was linked to common misconceptions surrounding the cyber threat emanating from Pyongyang. North Korea’s lack of access to modern computer hardware within its borders is not related to its ability to successfully execute cyberattacks, intrusions, and other unwanted cyber activity, because these often rely on software, not hardware — a tool that North Korean hackers have become very skilled at developing, trading, and using. While Beijing and Moscow captivate the attention of most democratic governments concerned about pending cyber intrusions, Pyongyang continues to defy miscalculated expectations by successfully employing myriad sophisticated cyberattacks that target new and developing financial technology. As such, North Korea will likely continue to adapt its cybercrime tactics targeting cryptocurrency to circumvent obstacles presented by economic sanctions on more traditional forms of financial activity and commerce.

Read the full article from Inkstick.

More from CNAS

  • Commentary
    • May 27, 2025
    Semiconductor Imports and U.S. National Security

    The Secretary of Commerce has initiated a Section 232 investigation to determine the effects on the national security of imports of semiconductors and semiconductor manufactur...

    By Geoffrey Gertz & Caleb Withers

  • Podcast
    • May 22, 2025
    AI Diffusion with Paul Scharre

    Paul Scharre, AI expert and CNAS Executive Vice President, joins Geoff and Emily to talk about Trump’s AI dealmaking in the Gulf, the rescission of the Biden-era AI diffusion ...

    By Emily Kilcrease, Paul Scharre & Geoffrey Gertz

  • Video
    • May 20, 2025
    Ex-NATO Official: Putin Is ‘Stringing Along Trump’ to Push for Sanctions Relief

    Jim Townsend, an adjunct senior fellow at the Center for a New American Security, weighs in on peace talks after the Putin-Zelenskyy-Trump call and whether the U.S. is failing...

    By Jim Townsend

  • Video
    • May 16, 2025
    Ziemba: U.S. Has To Be Ready To Accept Mideast Investments

    US President Donald Trump has secured $200 billion in deals during a visit to the United Arab Emirates, according to the White House, as he wraps up his visit to the Middle Ea...

    By Rachel Ziemba

View All Reports View All Articles & Multimedia