N.K. hacking group breached S. Korean nuclear research institute last month: lawmaker
SEOUL, June 18 (Yonhap) -- South Korea's state-run nuclear research institute's computer network was breached by a North Korean cyber attack last month, an opposition lawmaker claimed Friday.
According to Rep. Ha Tae-keung of the main opposition People Power Party, 13 external Internet Protocol (IP) addresses were found to have breached the internal network of the Korea Atomic Energy Research Institute (KAERI) on May 14.
Some of the addresses were traced back to hacking servers of "kimsuky," a North Korean cyberespionage group.
"Kimsuky" is known to be a unit within the Reconnaissance General Bureau, the North's military intelligence agency. The group is believed to be behind the cyber breach of manufacturers of COVID-19 vaccines and treatments, including Britain-based AstraZeneca and South Korea's Celltrion, last year.
"If the country's nuclear power and other key technologies have been leaked, it could become a massive security breach following Pyongyang's hacking of Seoul military cyber command in 2016," Ha said. KAERI is a government-funded research institute in charge of developing nuclear technology.
Rep. Ha Tae-keung of the main opposition People Power Party speaks during a news conference on June 18, 2021, at the National Assembly in Seoul. claiming that a North Korean hacking group has breached South Korea's state-run nuclear research institute. (Yonhap)
Ha claimed that some of the IP addresses that breached the KAERI network were found to have used the email address of Moon Chung-in, a former special foreign policy adviser to President Moon Jae-in.
The email account was reportedly hacked in 2018 while Moon was still at Cheong Wa Dae. The presidential office failed to track down the attacker at the time, but in 2020, a local cybersecurity firm reported that "kimsuky" apparently distributed phishing emails targeting the former adviser.
Ha argued that KAERI initially tried to cover up the breach, telling his office that the incident did not take place.
In light of the announcement, KAERI admitted that its internal network was indeed breached but added that it was still investigating who the culprit was and whether its data was actually stolen.
Ha called on the government to probe the case, pointing out that the administration has been hesitant to admit North Korea's cyberattacks.
nyway@yna.co.kr
(END)
-
(LEAD) S. Korea fully restores bilateral military information-sharing pact with Japan -
S. Korea, U.S. set for 'largest-ever' live-fire drills to mark alliance's 70th anniv. -
Major N. Korean websites offline as of Tuesday morning -
N. Korea fires multiple cruise missiles toward East Sea: source -
SsangYong Motor reborn as KG Mobility after takeover
-
Yoon puts S. Korea-Japan relations back on track -
Japan's removal of export curbs on S. Korea to boost supply chain stability, ease biz uncertainties -
Yoon's summit with Biden to highlight S. Korea's 'pivotal' role in region: U.S. experts -
(News Focus) Solution to forced labor issue shows Yoon's commitment to improving ties with Japan -
Seoul's controversial plan for forced labor compensation reflects urgency of security partnership with Tokyo: experts
