Go to Contents Go to Navigation

(4th LD) N. Korea stole information from smartphones of S. Korean officials: spy agency

All Headlines 18:18 March 08, 2016

(ATTN: UPDATES with details)

SEOUL, March 8 (Yonhap) -- North Korea has stolen information from the smartphones of South Korean officials, Seoul's spy agency said Tuesday, the latest in a series of cyberattacks against South Korea.

North Korean hackers sent text messages to dozens of major South Korean officials to try to lure them into following links to malicious software, the National Intelligence Service (NIS) said.

The intelligence agency said about one out of five smartphones belonging to them was eventually infected with malware between late February and early March, giving the hackers access to lists of phone conversations, the content of text messages and phone conversations.

The security breach has also led to the leak of the phone numbers of other senior South Korean officials.

The NIS did not identify any officials whose smartphones were compromised.

The latest cyberattacks came amid heightened tensions on the Korean Peninsula following Pyongyang's nuclear test and long-range rocket launch earlier this year.

South Korea and the U.S. began the largest-ever annual military drill on Monday in the latest show of force against North Korea. In response, North Korea threatened to counter with a preemptive attack.

The hacking attacks also came as President Park Geun-hye has called on the parliament to endorse a bill meant to prevent cyber terrorism.

The NIS asked the relevant ministries to maintain readiness to cope with North Korea's cyberattacks, noting it has detected signs that North Korea could be preparing a massive cyberattack.

The NIS also said it confirmed last month that North Korean hackers controlled the internal computer network of a South Korean firm whose security software is used by more than 20 million South Koreans for financial transactions on the Internet.

The security breach could potentially pose a threat to South Koreans who rely on the Internet for banking and credit card transactions.

Still, the NIS said no ordinary South Koreans were affected and that joint security measures were taken with the company to deal with the attack. It said the damage was restricted to the company's server.

It also said North Korean hackers made a failed attempt to steal the email accounts and passwords of employees of two South Korea's regional rail operators in January and February, though it declined to say whether rail operators are operators of subways or regular trains.

South Korea runs subways in Seoul and five other major cities -- Busan, Daegu, Incheon, Daejeon and Gwangju.

The intelligence agency believes that the hacking may have been an attempt by the North to stage a cyberattack against the control tower of South Korea's rail system.

Last year, North Korea turned 60,000 computers into zombies, which could be used for its cyberattacks. In January alone, North Korea is believed to be in control of about 10,000 "zombie computers" in more than 120 countries, according to the NIS.

North Korea -- which has thousands of cyberwarfare personnel -- has a track record of waging cyberattacks on South Korea and the United States in recent years, though it has flatly denied any involvement.

North Korea launched a cyberattack against South Korea in July 2009, two months after its second nuclear test. It also hacked South Korean media organizations and financial firms in March 2013, a month after its third nuclear test.

North Korea carried out its fourth nuclear test in January and launched a long-range rocket in February.

entropy@yna.co.kr
(END)

HOME TOP
Send Feedback
How can we improve?
Thanks for your feedback!