North Korean Threat Perceptions in Advanced Persistent Threat (APT) Operations in Global Cyberspace

Authors

  • Dessi Nursari Universitas Indonesia, Depok, Indonesia

DOI:

https://doi.org/10.38035/dijemss.v6i4.4665

Keywords:

Cyber Attack, Threat Perception, Advanced Persistent Threats, North Korea

Abstract

Technological developments have given rise to new threats in the form of cyber attacks, one of which is Advanced Persistent Threat (APT). APT is a campaign of attacks by groups that may or may not be linked to a state (state-sponsored). Based on reports from various sources related to cyber security, data shows that cyber attacks originating from North Korea have targeted several countries in various sectors such as government, finance, and private industry. Therefore, this study aims to understand the perceptions and motives behind cyber attacks, including those carried out by North Korean APT groups in targeting the global cyberspace. This study uses a qualitative-deductive method with the threat perception theory, as well as data from literature and documents from various scientific sources. The results show that North Korea's APT is an asymmetric strategy used to maintain regime stability and mitigate global economic pressures in a hidden way.

References

Ahmad, Atif., et al. (2019). Strategically-motivated advanced persistent threat: Definition, process, tactics and a disinformation model of counterattack. Elsevier: Computers & Security, 86, 402-418. https://doi.org/10.1016/j.cose.2019.07.001

Avery, Emma C., et.al. (2017). North Korean Cyber Capabilities: In Brief. Congressional Research Service. https://sgp.fas.org/crs/row/R44912.pdf

Badan Siber dan Sandi Negara. (2024). Lanskap Keamanan Siber Indonesia Tahun 2023. Jakarta: BSSN.

Berghel, Hal. (2015). Cyber Chutzpah: The Sony Hack and the Celebration of Hyperbole. The IEEE Computer Society.

Blank, S. J. (2003). Rethinking Asymmetric Threat. Strategic Studies Institute.

Blatter, Joachim & Haverland, Markus. (2014). Case Studies and Causal Process Tracing. Palgrave Macmillan.

Boo, Hyeong-wook. (2017). An Assessment of North Korean Cyber Threats. The Journal of East Asian Affairs, 31(1), 97–117. https://www.jstor.org/stable/44321274

Bryman, Alan. (2012). Social Research Methods (4th ed.). Oxford University Press.

Byman, Daniel & Jennifer Lind. (2010). Pyongyang's Survival Strategy: Tools of Authoritarian Control in North Korea. International Security, 35(1), 44–74. https://www.jstor.org/stable/40784646

Chung, Min Kyung., et.al. (2016). A Study on North Korea's Cyber Attacks and Countermeasures. Journal of Information Technology Services, Journal of Information Technology Services, 15(1), 67–79. https://doi.org/10.9716/KITS.2016.15.1.067

Cohen, Raymond. (1978). Threat Perception in International Crisis. Political Science Quarterly, 93(1), 93–107. https://doi.org/10.2307/2149052

Hwang, Jeeseon. & Choi, Kyung-Shick. (2021). North Korean cyber attacks and policy responses: An Interdisciplinary Theoretical Framework. International Journal of Cybersecurity Intelligence and Cybercrime, 4(2), 4–24. https://www.doi.org/10.52306/04020221NHPZ9033

Jervis, R. (1976). Perception and Misperception in International Politics. Princeton University Press.

Kim, Chong Woo & Carolina Polito. (2019). The Evolution of North Korean Cyber Threats. Asan Institute for Policy Studies.

Kim, Min-hyung. (2022). North Korea’s Cyber Capabilities and Their Implications for International Security. Sustainability, 14, 1744. https://doi.org/10.3390/su14031744

Kim, Yongho. (2013). North Korea’s Threat Perception and Provocation Under Kim Jong-un. North Korean Review, 9(1), 6-19. DOI: 10.3172/NKR.9.1.6

Kim, Yu-Kyung., et al. (2020). Analysis of the Asymmetrical Relationships between State Actors and APT Threat Groups. 2020 International Conference on Information and Communication Technology Convergence (ICTC), 695-700, DOI: 10.1109/ICTC49870.2020.9289506

Lee, Jaeil, et al. (2021). Classification of Attack Types and Analysis of Attack Methods for Profiling Phishing Mail Attack Groups. IEEE Access, 9. DOI: 10.1109/ACCESS.2021.3084897

Mandiant. (2025). M-Trends 2025 Report. Google Cloud Security. https://cloud.google.com/security/resources/m-trends

MITRE. (2025). Kimsuky. https://attack.mitre.org/groups/G0094/

MITRE. (2025). Lazarous Group. https://attack.mitre.org/groups/G0032/

Nah, Liang Tuang. (2023). North Korean Hackers. North Korean Review, 19(1), 91–98. DOI: 10.2307/NKR/19.1./NKR.19.1.91

National Cyber Security Centre. (2024). Joint Cybersecurity Adisory: North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs. https://media.defense.gov/2024/Jul/25/2003510137/-1/-1/0/Joint-CSA-North-Korea-Cyber-Espionage-Advance-Military-Nuclear-Programs.PDF

Neuman, W. L. (2014). Social Research Methods: Qualitative and Quantitative Approaches (7th ed.). Pearson Education.

NSFOCUS. (2025). APT Annual Lanscape Report. Beijing: NSFOCUS’s Fuying Lab. https://nsfocusglobal.com/company-overview/resources/2024-apt-annual-landscape-report/

Park, Joshua. (2021). The Lazarus Group: The Cybercrime Syndicate Financing The North Korea State. Harvard International Review, 42(2), 34-39.

Pinkston, Daniel A. (2020). North Korea’s Objectives and Activities in Cyberspace. Asia Policy, 15(2). https://www.jstor.org/stable/27023903

Sharp, Travis. (2017). Theorizing cyber coercion. Journal of Strategic Studies, 40(7), 898–926. DOI:10.1080/01402390.2017.1307741

Siers, Rhea. (2014). North Korea The Cyber Wild Card. Journal of Law & Cyber Warfare, 4(1), 1–12. http://www.jstor.org/stable/26441246

Verizone Business. (2025). 2025 Data Breach Investigations Report. https://www.verizon.com/business/resources/reports/dbir/

Waltz, K. N. (1979). Theory of International Politics. Random House.

Wendt, A. (1999). Social Theory of International Politics. Cambridge University Press.

Youn, Jaepil, et al. (2022). Research on Cyber ISR Visualization Method. Electronics, 11, 4142. https://doi.org/10.3390/electronics11244142

Youn, Jaepil, et al. (2023). Correction: Research on Cyber ISR Visualization Method Electronics, 12, 4975. https://doi.org/10.3390/electronics12244975

Downloads

Published

2025-05-14

How to Cite

Nursari, D. (2025). North Korean Threat Perceptions in Advanced Persistent Threat (APT) Operations in Global Cyberspace. Dinasti International Journal of Education Management and Social Science, 6(4), 3370–3379. https://doi.org/10.38035/dijemss.v6i4.4665

Issue

Vol. 6 No. 4 (2025): Dinasti International Journal of Education Management and Social Science (April - May 2025)

Section

Articles

License

Copyright (c) 2025 Dessi Nursari

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

Authors who publish their manuscripts in this journal agree to the following conditions:

  1. The copyright on each article belongs to the author(s).
  2. The author acknowledges that the Dinasti International Journal of Education Management and Social Science (DIJEMSS) has the right to be the first to publish with a Creative Commons Attribution 4.0 International license (Attribution 4.0 International (CC BY 4.0).
  3. Authors can submit articles separately, arrange for the non-exclusive distribution of manuscripts that have been published in this journal into other versions (e.g., sent to the author's institutional repository, publication into books, etc.), by acknowledging that the manuscript has been published for the first time in the Dinasti International Journal of Education Management and Social Science (DIJEMSS).