Permanent Mission of the Republic of Korea to the United Nations

Statement by H.E Joonkook HWANG

Permanent Representative of the Republic of Korea

Security Council Briefing on Ransomware

New York, 8 November 2024 (AM)                                         

Thank you, Mr. President.

I extend my gratitude to the WHO Director-General and Mr. Conrado for their valuable insights.

The Republic of Korea welcomes this timely meeting on ransomware, one of the most significant types of cyberattacks. We are encouraged by the ongoing momentum in cybersecurity discussions at the Security Council this year, building upon the Arria Formula meeting in April and the signature event Open Debate in June chaired by the Republic of Korea during its Security Council Presidency.

Throughout these meetings, many countries emphasized that alongside other types of cyber threats, ransomware has emerged as a critical challenge to international peace and security.

Numerous countries have consistently emphasized the need for the Security Council to tackle cyber threats in accordance with its primary responsibility conferred by the UN Charter. In this regard, I would like to highlight the following points.

First, malicious cyber activities including ransomware act as threat multipliers, exacerbating existing challenges and amplifying conflicts. They disrupt essential social or public services, which can trigger social instability and undermine national security.

In Ukraine, a number of cyberattacks on critical infrastructure like power grids and telecommunication systems are causing wide blackouts and network disruptions. They not only caused humanitarian sufferings, but also further escalated the war.

Second, cyberattacks seriously undermine the Security Council’s sanctions regime.

For example, according to the annual report by the Panel of Experts for the DPRK Sanctions Committee, the DPRK generates approximately 50% of its foreign currency revenue through malicious cyber activities. This clearly underscores how cyberattacks have become a primary tool to circumvent and nullify Security Council sanctions.

Furthermore, sanctioned armed groups are leveraging illegal cyber activities to raise funds, conceal assets, and trade weapons, complicating the enforcement of asset freezes and arms embargoes.

Third, such illegal revenue is linked to WMD proliferation, which falls under the direct purview of the Security Council.

Indeed, the DPRK is funding 40% of its illegal WMD and missile development programs through malicious cyber activities, as the latest Panel of Experts report pointed out.

Last week, the DPRK launched a series of ballistic missiles including a new type of ICBM.

Needless to say, North Korean IT workers have also been engaging in serious crimes, such as the theft of intellectual property from numerous global defense firms with the aim of advancing its WMD capabilities.

Mr. President,

To cope with imminent threats posed by cyberattacks including ransomware, we believe that it is urgent to enhance the role of the Security Council and strengthen international cooperation.

At the Security Council level, we should consider requesting regular reports from the Secretary-General on evolving cyber threats to mainstream cybersecurity into the Council’s agenda, and hold regular Security Council meetings like other agenda items.

In the mid-to-long term, we can take actions to pursue accountability in the Security Council in addressing cyber activities that violate international law and harm international peace and security.

As for the need for international cooperation, we want to stress that cyber threats are global, as evidenced by the recent incidents in Costa Rica, and Trinidad and Tobago that took place over the last few years, where ransomware attacks led to declarations of national emergencies.

The Republic of Korea also continues to be exposed to cyberattacks. As recently as this week, there was a DDoS attack on the Ministry of National Defense. My government announced a few hours ago that cyberattacks by pro-Russian hacking groups have increased following North Korea’s troops deployment to Russia.

Given the transnational nature of cyberspace, our cybersecurity is only as strong as its weakest link. Therefore, international cooperation and capacity-building, particularly with developing countries, are crucial in responding to cyber threats.

To that end, my government is now participating in the Counter Ransomware Initiative led by the US, which aims to enhance global awareness and build collective resilience against ransomware.

Mr. President,

The Republic of Korea strongly believes that the Council, in order to remain relevant, should pay more attention to the threats emanating from emerging technologies like cyber and AI.

Along with our ongoing efforts like the adoption of GA resolution on AI in the military domain at the First Committee this week and the 2024 REAIM Summit in Seoul, the Republic of Korea will continue to play its own part at the Security Council.

Thank you. Mr. President. /END/