Summit failed to address N. Korea’s hacking against US

Experts warn threats becoming more dangerous

By Tami Abdollah

Associated Press

WASHINGTON — Among the subjects President Trump apparently didn’t discuss with North Korean leader Kim Jong Un in Singapore — the regime’s human rights abuses, exports of missile technology and mistreatment of US prisoners — there’s one more: its long record of dangerous cyberattacks against sensitive targets in the United States and allied nations.

Experts warn that the country’s hacking skills have become increasingly sophisticated and dangerous in recent years. North Korean exploits have included the damaging 2017 WannaCry ransomware attacks, intrusions into banks in more than a dozen countries to heist millions of dollars over the last few years, and continually brazen cyberattacks on South Korean computer networks.

The historic Singapore meeting focused on ‘‘denuclearization’’ of the Korean peninsula, although it didn’t yield a detailed agreement for accomplishing that goal.

In the run-up to the June 12 meeting, the Department of Homeland Security warned of an ongoing threat by North Korean government hackers, who have attacked critical infrastructure and media, aerospace and financial companies since at least 2009, infecting networks in at least 17 countries and the United States. Days after the summit, DHS sent a fresh notice describing malware variants used by North Korea.

But there is no indication that the two leaders discussed cybersecurity, worrying experts who warn that North Korea’s cyberwarfare capabilities pose an immediate threat to US interests that warrants high-level attention.

Few know the impact of a North Korean cyberattack like former Sony Pictures chief executive Michael Lynton. More than three years ago, the American movie studio owned by Sony suffered a crippling hack prior to its release of ‘‘The Interview,’’ a film centered on a screwball satire of Kim.

The unprecedented corporate cyberattack cost Sony more than $100 million — destroying more than 70 percent of the computers at the then-7,000-person studio, Lynton told The Associated Press in an interview Wednesday. It took the company about a year to recover. Lynton left Sony in 2017 to become chairman of Snap Inc.

The AP made efforts to determine whether the subject came up in Singapore, but the White House declined official comment for this story. The subject wasn’t mentioned in official statements out of the summit or by the president in his postsummit press conference .

Dmitri Alperovitch, cofounder of cybersecurity firm CrowdStrike Inc., said North Korea’s recently cyberactivities have focused on ‘‘traditional espionage’’ aimed at gathering intelligence from nations involved in the summit, as well as destructive attacks and cybercrime to raise money for the regime.

North Korea has slowly joined the small group of nations, along with China and Russia, with both the hacking mojo and a proven willingness to attack US interests. Following the attack on Sony, the FBI publicly blamed North Korea, the first time it had done so. The Obama administration imposed sanctions as a result.

An Obama-era agreement with China aimed at curbing economic cyberespionage was reaffirmed by the Trump administration last year. But earlier this year, Trump accused China of continuing to conduct and support cyber intrusions into US computer networks.