A North Korean hacking group has successfully hacked one of South Korea’s largest state-run think tanks, responsible for researching nuclear technology, it has emerged.
The breach, which happened on 14 May, affected the government-funded Korea Atomic Energy Research Institute (KAERI), according to South Korean lawmaker Ha Tae-keung, as reported by Yonhap.
State-backed hackers are disrupting COVID-19 vaccine efforts North Korea expected to increase cyber attacks due to COVID struggles Oxford University COVID lab falls victim to hackers
Ha, a representative from the People Power party, South Korea's main opposition party, stated that KAERI initially tried to cover up the breach by denying the attack took place, only for it to later admit that its network was breached. The think tank is reportedly still investigating the nature of the attack and whether any data was stolen.
The lawmaker cited analysis by cyber security firm IssueMakersLab, which found that the attack involved 13 IP addresses, some of which were traced to Kimsuky, a unit with North Korea’s military intelligence agency.
"If the country's nuclear power and other key technologies have been leaked, it could become a massive security breach following Pyongyang's hacking of Seoul military cyber command in 2016," said Ha.
Ha added that some of the IP addresses that breached the KAERI network used the email address of Moon Chung-in, a former advisor to President Moon Jae-in. The email account was reportedly hacked in 2018, but it wasn’t until 2020 that a local cyber security firm found that Kimsuky was behind this attack as well.
RELATED RESOURCE
Security awareness training strategies for account takeover protection
Why you need an inside-the-perimeter strategy for internal threats
In November last year, pharmaceutical companies researching treatments and vaccines for COVID-19 were actively being targeted by prominent state-backed hackers from North Korea and Russia. Microsoft stated that these groups were launching “unconscionable” cyber attacks against the companies.
The number of cyber attacks from North Korean sources is expected to increase this year, according to a report published in February. It detailed that the closure of North Korea’s border with China, along with severe typhoons and floods, to be key factors in the potential increase of cyber crime.
-
Westcon-Comstor and Vectra AI launch brace of new channel initiativesNews Westcon-Comstor and Vectra AI have announced the launch of two new channel growth initiatives focused on the managed security service provider (MSSP) space and AWS Marketplace.
-
Third time lucky? Microsoft finally begins roll-out of controversial Recall featureNews The Windows Recall feature has been plagued by setbacks and backlash from security professionals
-
Latitude Financial's data policies questioned after more than 14 million records stolenNews Some of the data is from at least 2005 and includes customers’ name, address, and date of birth
-
Latitude hack now under state investigation as customers struggle to protect their accountsNews The cyber attack has affected around 330,000 customers, although the company has said this is likely to increase
-
IDCARE: Meet the cyber security charity shaping Australia and New Zealand's data breach responseCase Studies IDCARE is recruiting a reserve army to turbocharge the fightback against cyber crime not just in the region, but in the interests of victims all over the world
-
Australia commits to establishing second national cyber security agencyNews The country is still aiming to be the most cyber-secure country in the world by 2030
-
Medibank bleeds $26 million in cyber costs following hackNews The company believes this figure could rise to $45 million for the 2023 financial year
-
TikTok's two new European data centres to address data protection concernsNews The company is under pressure to prove its user data isn’t being accessed by the Chinese state
-
Cyber attack on Australia’s TPG Telecom affects 15,000 customersNews It is the third cyber attack on a major Australian telco since October
-
Telstra blames IT blunder for leak of 130,000 customer recordsNews Australia’s biggest telco said that the error was due to a mismanagement of databases and not a cyber attack
