North Korean Reconnaissance General Bureau

According to the US government, the Reconnaissance General Bureau (RGB) is a military intelligence agency of the Democratic People’s Republic of Korea (DPRK). The organization has been linked to multiple cyber attacks and intrusion sets.

An indictment alleges that members of the RGB were responsible for the attack against Sony Pictures in November 2014, cyber-enabled heists from banks and multiple cash-out and cryptocurrency theft operations.

www.mandiant.com

https://www.mandiant.com/resources/blog/north-korea-cyber-structure-alignment-2023

www.justice.gov

https://www.justice.gov/usao-cdca/pr/north-korean-regime-backed-programmer-charged-conspiracy-conduct-multiple-cyberattacks

cloud.google.com

https://cloud.google.com/blog/topics/threat-intelligence/apt45-north-korea-digital-military-machine

www.justice.gov

https://www.justice.gov/opa/pr/three-north-korean-military-hackers-indicted-wide-ranging-scheme-commit-cyberattacks-and

home.treasury.gov

https://home.treasury.gov/news/press-releases/jy1498

www.proofpoint.com

https://www.proofpoint.com/us/blog/threat-insight/social-engineering-dmarc-abuse-ta427s-art-information-gathering

www.ic3.gov

https://www.ic3.gov/Media/News/2024/240725.pdf