The person at the center of this case
U.S. hospitals, healthcare companies, and government/technology entities
Cold Case · Open
1 year waiting · since 2024
RIM JONG HYOK
Justice for U.S. hospitals, healthcare companies, and government/technology entities — the trail went cold in 2024, but the truth hasn't.
Start here
Key leads to think about
🎯
suspect
Lead #1What is Rim Jong Hyok's current location and operational status within the Andariel Unit?
🔍
evidence
Lead #2How was the Maui ransomware infrastructure identified and traced back to North Korean government operations?
💡
clue
Lead #3Which specific U.S. hospitals and healthcare companies were targeted, and what ransom amounts were demanded?
Rim Jong Hyok, a member of North Korea's Reconnaissance General Bureau, is wanted for allegedly orchestrating a sophisticated cyber conspiracy targeting U.S. hospitals and healthcare companies using Maui ransomware. The operation involved extorting ransoms, laundering proceeds, and conducting espionage against government and technology targets across the United States, South Korea, and China. A federal arrest warrant was issued in July 2024, but Rim Jong Hyok remains at large in North Korea, making international cooperation critical to disrupting this ongoing cyber threat.
Case
#1159
North Korea (last known location)
United States District Court, District of Kansas; FBI
Try asking
Claim this imported case
A one-time $10 claim transfers this imported case workspace to your account. You get 10 uploads for this case, 25 daily AI questions for this case, and public tips with files route to you.
10 uploads25 AI questions/day
This does not start a subscription. When the included limits are reached, the Personal plan unlocks more workspace capacity.
More leads to consider
Beyond the top three above — each detail below could be the thread that pulls this case open.
📞
contact
Lead #4What international law enforcement partnerships exist to locate and apprehend Rim Jong Hyok?
🚗
vehicle
Lead #5What internet servers and infrastructure were purchased with laundered proceeds, and where are they located?
Have information about any of these leads?
Even the smallest detail could be the key to solving this case.
Official wording
Source Narrative
Conspiracy to Commit Computer Hacking; Conspiracy to Commit Promotion Money Laundering Caution: Rim Jong Hyok, a member of the Andariel Unit of the North Korean Government’s Reconnaissance General Bureau (RGB), a North Korean military intelligence agency, is wanted for allegedly conspiring to violate the Computer Fraud and Abuse Act. Acting on behalf of North Korea’s RGB, Rim Jong Hyok allegedly conspired to use the Maui ransomware software to conduct computer intrusions against U.S.
hospitals and healthcare companies, extort ransoms, launder the proceeds, and purchase additional internet servers to conduct cyber espionage hacks against government and technology victims in the United States, South Korea, and China. On July 24, 2024, a federal arrest warrant was issued for Rim Jong Hyok in the United States District Court, District of Kansas, after he was charged with conspiracy to commit computer hacking and conspiracy to commit promotion money laundering.
Remarks: Rim Jong Hyok is a North Korean citizen last known to be in North Korea.
Timeline of Events
🕵️
2024-07-24
Federal Arrest Warrant Issued
A federal arrest warrant was issued in the United States District Court, District of Kansas, charging Rim Jong Hyok with conspiracy to commit computer hacking and conspiracy to commit promotion money laundering.
Case Information
Incident:July 24, 2024
Last Updated:June 15, 2026
Up to $10 Reward
For information leading to the resolution of this case
Leave a comment
Comments
Case Information
Incident:July 24, 2024
Last Updated:June 15, 2026
Up to $10 Reward
For information leading to the resolution of this case