The person at the center of this case
U.S. hospitals, healthcare companies, and government/technology entities
Cold Case · Open
1 year waiting · since 2024
RIM JONG HYOK
Justice for U.S. hospitals, healthcare companies, and government/technology entities — the trail went cold in 2024, but the truth hasn't.
Start here
Key leads to think about
🎯
suspect
Lead #1What is Rim Jong Hyok's current operational status within North Korea's Reconnaissance General Bureau?
🔍
evidence
Lead #2Which U.S. hospitals and healthcare companies were targeted by the Maui ransomware attacks, and what ransom amounts were demanded?
💡
clue
Lead #3How were the laundered proceeds used to purchase internet servers, and which servers were acquired for cyber espionage operations?
Rim Jong Hyok, a North Korean intelligence operative with the Reconnaissance General Bureau's Andariel Unit, is wanted for leading a conspiracy to deploy Maui ransomware against U.S. hospitals and healthcare companies. The scheme involved extorting ransoms, laundering proceeds, and purchasing servers for cyber espionage against targets in the United States, South Korea, and China. A federal arrest warrant was issued on July 24, 2024, but Rim Jong Hyok remains at large, believed to be in North Korea.
Case
#1159
North Korea (last known location)
United States District Court, District of Kansas; Federal Bureau of Investigation
Try asking
Claim this imported case
A one-time $10 claim transfers this imported case workspace to your account. You get 10 uploads for this case, 25 daily AI questions for this case, and public tips with files route to you.
10 uploads25 AI questions/day
This does not start a subscription. When the included limits are reached, the Personal plan unlocks more workspace capacity.
More leads to consider
Beyond the top three above — each detail below could be the thread that pulls this case open.
📍
location
Lead #4What infrastructure in North Korea, South Korea, and China was used to support the ransomware and espionage campaign?
Have information about any of these leads?
Even the smallest detail could be the key to solving this case.
Official wording
Source Narrative
Conspiracy to Commit Computer Hacking; Conspiracy to Commit Promotion Money Laundering Caution: Rim Jong Hyok, a member of the Andariel Unit of the North Korean Government’s Reconnaissance General Bureau (RGB), a North Korean military intelligence agency, is wanted for allegedly conspiring to violate the Computer Fraud and Abuse Act. Acting on behalf of North Korea’s RGB, Rim Jong Hyok allegedly conspired to use the Maui ransomware software to conduct computer intrusions against U.S.
hospitals and healthcare companies, extort ransoms, launder the proceeds, and purchase additional internet servers to conduct cyber espionage hacks against government and technology victims in the United States, South Korea, and China. On July 24, 2024, a federal arrest warrant was issued for Rim Jong Hyok in the United States District Court, District of Kansas, after he was charged with conspiracy to commit computer hacking and conspiracy to commit promotion money laundering.
Remarks: Rim Jong Hyok is a North Korean citizen last known to be in North Korea.
Timeline of Events
🕵️
2024-07-24
Federal arrest warrant issued
Rim Jong Hyok charged with conspiracy to commit computer hacking and conspiracy to commit promotion money laundering in the United States District Court, District of Kansas
Case Information
Incident:July 24, 2024
Last Updated:April 29, 2026
Up to $10 Reward
For information leading to the resolution of this case
Leave a comment
Comments
Case Information
Incident:July 24, 2024
Last Updated:April 29, 2026
Up to $10 Reward
For information leading to the resolution of this case