Share this page!

Eric Geller Profile picture
Twitter logo
17 Feb, 14 tweets, 4 min read
Breaking: US unseals charges against 3 North Korean hackers for their role in WannaCry ransomware, Sony hack, bank heists, and other cyberattacks.

Prosecutors also charged a Canadian who helped them launder money.

USG released advisory on their malware: us-cert.cisa.gov/ncas/alerts/aa…
One of the three men charged was previously charged in connection with this activity in 2018: justice.gov/opa/pr/north-k…
"The DPRK cyber threat has followed the money and turned its revenue-generation sights on the most cutting-edge aspects of international finance, including through the theft of cryptocurrency from exchanges and other financial institutions," AAG John Demers says on press call.
Demers: "Simply put, the [North Korean] regime has become a criminal syndicate with a flag, which harnesses its state resources to steal hundreds of millions of dollars."
The Canadian money launderer is in custody and has pled guilty, Demers says.
Demers on new joint CISA/FBI/Treasury advisory on North Korea's cryptocurrency malware: "The context provided in today's indictment underscores the necessity of paying attention to this advisory and its recommendations."
Demers notes that North Korea occasionally sent its hackers to work out of China and Russia.

"The time is beyond ripe for Russia and China, as well as any other country whose entities or nationals play a role in the DPRK revenue-generation efforts, to take action," he says.
North Korean hackers indictment: justice.gov/opa/press-rele…

Wanted posters:

justice.gov/opa/press-rele…

justice.gov/opa/press-rele…

justice.gov/opa/press-rele…
Acting US Attorney Tracy Wilkison (CDCA): Today's indictment expands beyond Sony and WannaCry “to include entirely new types of schemes": cyber heists against banks, ATM cash-out schemes, ransomware extortion, and fake (infected) cryptocurrency apps.
The indictment also charges the North Koreans with setting up a blockchain-based scheme in which they tricked people into investing in marine vessels and then routed the money to their own accounts to evade sanctions.
Kristi Johnson, assistant director in charge of the FBI's LA Field Office: “This case is the perfect example of the destruction that can be caused by a cyberattack and the grave threat these attacks pose to our national security.”
“This case is like a 1,000-piece puzzle, but it’s spread out all over the map," says Jesse Baker, special agent in charge of the Secret Service's LA office. "In the beginning, the pieces are hard to connect, but you put a few together and eventually a clear picture emerges.”
Baker: "We continue to see a confluence of state and non-state actors in cybercrime. … These distinctions have really blurred."
For those who missed my earlier thread about the North Korean hacker charges, here's my story with the key information: politico.com/news/2021/02/1…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Eric Geller

Eric Geller Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @ericgeller

Eric Geller Profile picture
16 Feb
Scoop: The public-private ICT supply chain security task force plans to craft a legislative proposal to improve information sharing, including liability protections. Task force has found companies are afraid of vendors suing them for sharing info on risks. subscriber.politicopro.com/article/2021/0…
The supply chain task force approved the plan to develop an info sharing proposal at its 2/12 meeting, along w/ other projects (stay tuned for more on those).

The task force won't send its proposal directly to WH or Congress but will find other parties best positioned to do so.
"We wouldn't do the advocacy per se," a person involved in the task force's work said of the info sharing proposal. "We would provide the analysis and the motivation for [that advocacy]."
Read 5 tweets
Eric Geller Profile picture
16 Feb
Climate change. Boy, I don't know. washingtonpost.com/weather/2021/0… Image
Naturally, this storm is worsening our already dysfunctional vaccine rollout process. Image
"Dallas hit 5 degrees on Monday morning, its coldest reading since 1989. ... In Dallas the average high on Feb. 14 is about 58 degrees, the average low 42 degrees."

My god.
Read 6 tweets
Eric Geller Profile picture
10 Feb
Every new detail about 1/6 reinforces both how bad it was and how much worse it could have been.
¯\_(ツ)_/¯
This is correct and just reinforces how obvious the facts of this whole story are to every single person, even if many of them won't admit it.
Read 8 tweets
Eric Geller Profile picture
10 Feb
The House Homeland Security Committee is kicking off a cyber hearing right now: homeland.house.gov/activities/hea…

Half of the witnesses (@C_C_Krebs and former Principal Deputy DNI Sue Gordon) were pushed out by Trump.
One theme from hearing so far: interest in making CISA the civilian fed govt's network defender. Not just helping, but actually supervising improvements to agencies' networks.

One suggestion made: let agencies offload accountability to CISA in exchange for giving up authority.
Another notable moment: @C_C_Krebs noted how little $ CISA had for IR and for CI operator engagement and said his "biggest regret" as director was inability to "plow additional resources" Into CI community engagement.

$800m of CISA's $1.2b cyber budget went to CDM and EINSTEIN.
Read 4 tweets
Eric Geller Profile picture
10 Feb
In her first public remarks since becoming Biden's deputy natsec adviser for cyber, Anne Neuberger tells a federal advisory board that one of the admin's priorities will be "to build back better from the SolarWinds incident with modernized defenses in cyberspace."
"President Biden has immediately shown leadership with saying we've got to get a handle on the SolarWinds incident," Neuberger says.
Neuberger spoke during the opening of a National Security Telecommunications Advisory Committee meeting.
Read 10 tweets
Eric Geller Profile picture
10 Feb
.@EACgov commissioners are meeting now to vote on whether to adopt a major overhaul of federal voting system guidelines, which includes many new security, privacy, and accessibility provisions. eac.gov/sites/default/…
@EACgov “VVSG 2.0 is a major step forward to ensure the next generation of voting equipment is more secure and accessible and ensures a better voting experience for all Americans," says Chairman @benhovland.
@EACgov @benhovland Hovland: “Election security has been a major topic and focus during these efforts, and I'm proud that the VVSG 2.0 includes provisions to ensure that we will have more paper ballots and built-in support for election officials to conduct more efficient post-election audits.”
Read 20 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!

Like this author's thread?

Get emails when @ericgeller has new unrolls!

Check out other threads from @ericgeller!

Read all threads by @ericgeller