North Korea spied on 11 Security Council officials using Gmail

North Korea spied on 11 Security Council officials using Gmail

  • State-led phishing campaign also utilized WhatsApp: draft report

UNITED NATIONS — North Korea launched cyberattacks on members of the
United Nations Security Council this year, a panel of experts said in an
unreleased report.

At least 11 officials from six members of the Security Council were targeted by
a spear-phishing campaign, designed to extract information from specific
individuals, led by North Korea’s intelligence agency in 2020, according to a
draft of the report submitted to the U.N. Security Council Sanctions
Committee on North Korea.

Attackers had sent messages to their targets using Gmail and WhatsApp,
posing as somebody else.

The draft report, expected to be published as early as next month, also
outlined ways in which North Korea was circumventing U.N. sanctions. The
country has been illicitly acquiring virtual assets such as cryptocurrencies to
generate income under the sanctions, though it is unclear exactly how
Pyongyang is cashing them out. It continues to send laborers to Russia and
China to earn foreign currencies.