OFAC sanctioned three North Korean state-sponsored cyber groups for engaging in malicious cyber activities against critical infrastructure.

According to OFAC, the cyber groups, collectively known as "Lazarus Group," are controlled by North Korea's primary intelligence bureau, the Reconnaissance General Bureau ("RGB"). The RGB is already subject to U.S. and UN sanctions. OFAC reported that Lazarus Group uses tactics such as cyber espionage, data theft, monetary heists and destructive malware operations against government, military and financial institutions, as well as critical infrastructure.

As a result of today's action, all property and interests in property of these entities, and of any entities that are owned, directly or indirectly, 50 percent or more by the sanctioned entities, that are in the United States or in the possession or control of U.S. persons are blocked and must be reported to OFAC. OFAC regulations also generally forbid all dealings by U.S. persons, and all transactions that occur within or transiting the United States, that involve the property or interests in property of blocked individuals or entities. Non-U.S. persons, including foreign financial institutions, are advised that engaging in certain transactions with the entities targeted by this action may result in the imposition of sanctions.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.