The sanctioned individuals work as IT personnel overseas particularly in China, Russia, Southeast Asia and Africa where they allegedly disguise their identity to work for IT companies or engage in information theft and cyber attacks.
The IT personnel are believed to be working under the 313 General Bureau, a subsidiary of the Ministry of Military and Industry that oversees North Korea’s weapons production, research and development.
South Korea is also sanctioning the Chosun Geumjeong Economic Information Technology Exchange Company, which is said to be involved in dispatching North Korean IT personnel abroad to contribute military funds to the regime.
Blockchain analytics firm Chainalysis says North Korean hackers stole $1.34 billion in 2024. A report from the United Nations (UN) Panel of Experts also says cyber plundering covers about 40 of the cost of North Korea’s WMD development.
