The National Intelligence Service of South Korea Unveils the New AI Strategy Employed by North Korean Hackers
The use of generative AI by North Korean hackers to plan cyberattacks has sparked international concern regarding the role of AI in cybersecurity.
North Korean hackers, known for their extensive cybercriminal activities, have now included artificial intelligence (AI) in their existing toolkit. The National Intelligence Service (NIS) of South Korea has recently disclosed that these cybercriminals are employing generative AI, an advanced technology capable of producing authentic text, images, and even voices, to further their hacking activities.
The NIS did not provide any information, but they have suspicions that the AI is being utilized for two primary purposes: discerning possible targets and conducting reconnaissance for hacking tools. Envision possesses an indefatigable AI assistant that diligently searches the internet for susceptible systems and the most recent vulnerabilities – that is precisely the objective of these hackers.
An authoritative representative from South Korea’s National Intelligence Service revealed that North Korean hackers have been utilizing generative artificial intelligence to identify potential targets for hacking and acquire the necessary technologies for carrying out cyber attacks. Although the user did not disclose particular information, it seems that North Korean hackers have not yet employed generative AI for real hacks. Instead, they are utilizing it for the sake of planning.
Although the idea of AI-driven hacks may be unsettling, there is a positive aspect to consider. Currently, it appears that the North Koreans are utilizing artificial intelligence in the capacity of a highly advanced research assistant, rather than as an autonomous vehicle for cybercrime. They are utilizing the AI’s analytical capabilities to collect information and strategize their attacks, without completely relinquishing control to the AI.
Nevertheless, South Korea is not willing to take any risks. They are closely monitoring North Korea’s AI initiatives, recognizing that the future of cyber warfare could potentially entail highly alarming elements. The NIS has issued a warning over the possibility of electoral interference in South Korea and the US, specifically highlighting the utilization of AI-generated deepfakes and fake news as the preferred methods.
Furthermore, it is not limited to North Korea alone. The National Cyber Security Centre (NCSC) of the UK anticipates a significant increase in AI-driven cybercrime in the near future, as both government-backed hackers and ordinary cybercriminals adopt this technology.
Although AI may provide hackers with an advantage, the situation is not entirely negative. Cybersecurity specialists are utilizing the capabilities of AI to combat cyberattacks by creating sophisticated systems that can identify and prevent such attacks before they do harm. It is a game of pursuit and evasion, with increasingly significant consequences.
Consequently, what implications does this have for you? With the increasing use of AI in offensive and defensive cybersecurity, it is essential to remain watchful. Exercise caution when encountering dubious emails, texts, and online chats, and ensure that your software is regularly updated.
It is important to note that while AI currently does not independently orchestrate assaults, it does enhance the capabilities of human hackers, making them more formidable. Remain knowledgeable, ensure your safety, and let us anticipate that the ethical participants in the field of artificial intelligence can match the capabilities of the unethical participants.
About The Author:
Yogesh Naager is a content marketer who specializes in the cybersecurity and B2B space. Besides writing for the News4Hackers blog, he’s also written for brands including CollegeDunia, Utsav Fashion, and NASSCOM. Naager entered the field of content in an unusual way. He began his career as an insurance sales executive, where he developed an interest in simplifying difficult concepts. He also combines this interest with a love of narrative, which makes him a good writer in the cybersecurity field. In the bottom line, he frequently writes for Craw Security.
READ MORE ARTICLE HERE