Core Points - The U.S. Treasury has imposed new sanctions on North Korean bankers and institutions involved in laundering cryptocurrency linked to cyberattacks and illicit IT work schemes that fund weapons programs [1][6] - North Korean state-sponsored hackers have reportedly stolen over $2 billion in cryptocurrency in 2025, indicating the regime's increasing dependence on digital assets [2] - The sanctioned network utilized cryptocurrency transactions and shell companies to obscure the flow of illicit funds, with specific individuals managing significant amounts tied to ransomware activities [4][5] Group 1: Sanctions and Targets - Eight individuals and two entities were designated for laundering funds derived from cybercrime, including proceeds from ransomware and crypto thefts [1] - The Treasury targeted specific individuals, including Jang Kuk Chol and Ho Jong Son, who managed at least $5.3 million in cryptocurrency linked to First Credit Bank [4] - The sanctions also extend to Korea Mangyongdae Computer Technology Company (KMCTC), which allegedly used Chinese nationals as banking proxies to disguise the origins of funds earned by DPRK IT workers abroad [5] Group 2: Cyber Activities and Techniques - North Korean hackers employ advanced malware, phishing campaigns, and social engineering to infiltrate crypto firms and exchanges [3] - A recent investigation revealed that these hackers are increasingly using AI to automate and scale their cyberattacks [3] - Ryujong Credit Bank was also sanctioned for facilitating international transfers for North Korean entities involved in sanctions evasion and crypto laundering [6]

Funding - ConductorOne has raised $79 million to enhance secure access to work apps for employees [1] Cybersecurity - Industry faces increasing identity-related cyberattacks [1] - ConductorOne aims to ensure secure access for both human and non-human employees [1]

As voters across the US prepare to cast ballots Tuesday, election officials are operating with reduced support from a federal government agency that previously helped states and localities counter threats and cyberattacks https://t.co/OlHJXVKvcU ...

Core Insights - Telenor's annual Nordic security report emphasizes the need for a coordinated regional approach to security amid rising geopolitical tensions and digital threats [1][2] - The report identifies six main security risks that the Nordic region must prepare for, highlighting the interdependence of critical services [3][6] Security Risks - The six main threat categories identified are: 1. Destructive cyberattacks 2. Sabotage of digital and physical infrastructure 3. Foreign influence and disinformation campaigns 4. Intelligence operations targeting critical infrastructure 5. Organised digital financial crime 6. Advanced online fraud [6] Resilience and Preparedness - Telenor stresses that resilience requires long-term investment, preparedness, and coordination between governments and industry [5] - The report calls for predictable funding, aligned frameworks, and operations to ensure effective regional response during crises [5] Hybrid Threats and Critical Infrastructure - Hybrid threats are reshaping the security landscape, with state-backed and criminal actors blurring the lines between different types of attacks [7] - Critical infrastructure, including subsea cables and mobile networks, is identified as a strategic battleground and prime target for attacks [7] Data Sovereignty and Regional Cooperation - Data sovereignty is becoming a crucial issue, prompting investments in sovereign or regionally governed cloud solutions [7] - The report highlights the importance of Nordic alignment, shared situational awareness, and joint exercises to meet NATO's resilience objectives [7] Recommendations for Strengthening Resilience - The report includes recommendations for governments and operators to enhance preparedness and build lasting resilience across the Nordic region [8] - Key recommendations include making resilience a Nordic priority, aligning frameworks across borders, and strengthening information sharing [9]

Recent cyberattacks on public defenders’ offices in multiple Western US states have spotlighted the technological vulnerabilities of an often overlooked but critical part of the US judicial system https://t.co/EtDdaahftf ...

Core Insights - Palo Alto Networks has launched new AI agents called Cortex AgentiX to automate cybersecurity actions, addressing the increasing demand for automation in the industry [2][3] - The new agents can perform tasks such as threat intelligence investigations and responding to email breaches, and will be available through existing cloud services and as a separate platform next year [2][3] - CEO Nikesh Arora highlighted the need for companies to enhance their security measures, especially in light of recent sophisticated cyberattacks, such as a 10% stock drop for F5 following a nation-state hack [3][4] Company Developments - The company is integrating its $25 billion acquisition of CyberArk, an Israeli identity security vendor, into its AI and security strategies [4] - Arora emphasized the importance of finding great products and capable teams to execute the integration effectively [4] Industry Context - The cybersecurity industry is experiencing a shift towards more automated solutions as companies face increasingly complex cyber threats [3][4] - There is a concern that some enterprises may have a false sense of security regarding their defenses, indicating a need for improved awareness and action in cybersecurity [4]

RT Bloomberg Live (@BloombergLive)ICYMI: "Hackers are leveraging the simplest tools - they can leverage AI to get a much bigger scale in general with the same tools even," @ArmisSecurity's Yevgeny Dibrov explains how hackers are using AI to increase cyberattacks at #BloombergTech.⏯️https://t.co/14dUvkqp0j https://t.co/Xrq6hKbVTT ...

The recent wave of cyberattacks against Japanese businesses has exposed critical weaknesses in the country’s corporate digital defenses https://t.co/sOi9lu7apR ...

Cybersecurity Threats - Cyberattackers' capabilities are constantly evolving due to AI [1] - Attackers are unconstrained by morals and ethics [1]

“They have the local knowledge to pick targets, hit them hard and not back down.” Alex Hern, our AI correspondent, tells “The Intelligence” why cyberattacks are becoming more frequent and more costly https://t.co/teWB0mwVPw ...