The so-called 3.4 Distributed Denial of Service (DDoS) case , which attacked large domestic portals such as Naver, Daum, and Nate, and the 7.7 Didos Daan occurred in 2009,Police investigation. The reason is that the attack method is the same. Particularly, in the case of 7.7 Didos Da an, North Korea s Chosun Post Intelligence Agency s IP was used and the subsequent 3.4 incident However, the response and strategies of the Korean government were insufficient. In the form of terrorism, cyber terrorism is the most serious type of terrorism that has the greatest impact on the Korean people. Therefore, governments and corporations should take a more systematic and professional response strategy to cyber terrorism. Moreover, as the type of cyber terrorism that North Korea has made against the Republic of Korea has been shifted from a governmental organization to a private corporation or organization, cyber attacks of the past simply showed off political and military superiority, Is being transformed into a self-centered attack that pursues monetary gain. The US FBI analysis also judges the North Korean cyber attack to be the primary purpose of making foreign currency. In this study, we analyze the evolution of North Korea s cyber-terrorism attack that has been known publicly since early 2003, and present a countermeasure strategy for our government.