U.S. charges North Korean for Sony, 'WannaCry' hacks

Chris Strohm, Bloomberg News

Signage for Sony Corp. is seen outside the company's headquarters in Tokyo, Japan, on Friday, July 27, 2018. , Bloomberg

The U.S. Justice Department charged a North Korean with crimes stemming from the 2014 hacking attack on Sony Pictures Entertainment and a global operation that infected hundreds of thousands of computers with ransomware in 2017.

Park Jim Hyok worked for a company identified as the Korean Expo Joint Venture, a front company for North Korean intelligence, the Justice Department said Thursday. Park, acting in conjunction with conspirators in what’s called the Lazarus Group, was also involved in the theft of funds from the Bank of Bangladesh, according to the Justice Department.

The Treasury Department simultaneously announced sanctions against Park and his employer.

“The scale and scope of the cyber-crimes alleged by the complaint is staggering and offensive to all who respect the rule of law and the cyber norms accepted by responsible nations,” John Demers, head of the department’s National Security Division, said in a statement.

The actions came amid President Donald Trump’s efforts to negotiate with Kim Jong Un’s regime to give up its nuclear arsenal. But officials underscored that North Korea’s growing offensive cyber capabilities remain a concern.

“We will not allow North Korea to undermine global cybersecurity to advance its interests and generate illicit revenues in violation of our sanctions,” Treasury Secretary Steven Mnuchin said in a statement. “The United States is committed to holding the regime accountable for its cyber-attacks and other crimes and destabilizing activities.”

The massive Sony attack was seen at the time as representing a new, aggressive type of hacking operation because it crippled computers, deleted data and released embarrassing internal emails in retaliation for the company’s film, “The Interview,” a comedy about a CIA plot to kill Kim.

During the 2017 attacks, known as WannaCry, hackers infected computers with malicious software that encrypted data and demanded ransom payments from users to be released.

Park was also cited by U.S. officials as part of a conspiracy that conducted the fraudulent transfer of $81 million from central bank of Bangladesh in February 2016.

The U.S. government has previously said that North Korea was behind the attacks. North Korea has denied it was involved in the hacking.