Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cyberwarfare

North Korea Hacked Seoul’s War Plans: Report

North Korea Hackers

North Korea Hackers

North Korean computer hackers have stolen hundreds of classified military documents from South Korea including detailed wartime operational plans involving its US ally, a report said Tuesday.

Rhee Cheol-Hee, a lawmaker for the ruling Democratic party, said the hackers broke into the South’s military network in September last year and gained access to 235 gigabytes of sensitive data, the Chosun Ilbo daily reported.

Among the leaked documents was Operational Plans 5015 for use in case of war with the North and including procedures for “decapitation” attacks on leader Kim Jong-Un, the paper quoted Rhee as saying. Rhee, a member of parliament’s defence committee, could not be reached for comment, but his office said he had been quoted correctly.

The report comes amid heightened fears of conflict on the Korean peninsula, fuelled by US President Donald Trump’s continued threats of military action against Pyongyang to tame its weapons ambitions.

In his latest tweet over the weekend, Trump reiterated that diplomatic efforts with North Korea have consistently failed, adding that “only one thing will work.”

Pentagon spokesman Colonel Rob Manning said he was aware of the report, but declined to confirm or deny any aspect of it.

“I can assure you that we are confident in the security of our operations plans and our ability to deal with any threat from North Korea,” Manning told Pentagon reporters.

“I am not going to address whether or not that (hack) has occurred. What I am going to tell you is that the (South Korea)-US alliance, that bilateral entity, is there to deal with those types of situation and safeguard against them.”

Advertisement. Scroll to continue reading.

– 80 percent unidentified –

Citing Seoul’s defence ministry, Rhee said that 80 percent of the leaked documents had yet to be identified.

But the contingency plan for the South’s special forces was stolen, he said, as well as details about annual joint military drills with the US and information on key military facilities and power plants.

A ministry spokesman declined to confirm the report, citing intelligence matters.

In May, the ministry said North Korea had hacked into Seoul’s military intranet but did not say what had been leaked.

Pyongyang has a 6,800-strong unit of trained cyberwarfare specialists, according to the South Korean government. It has been accused of launching high-profile cyberattacks, including the 2014 hacking of Sony Pictures.

The Chosun Ilbo story was the second report Tuesday of military-related cyber-attacks in the Asia-Pacific.

Australia’s government said separately an unidentified defence contractor had been hacked and a “significant amount of data” stolen.

There were 47,000 cyber-incidents in the last 12 months, a 15 percent increase from the previous year, Minister for Cyber Security Dan Tehan said in Canberra as he unveiled a report by the Cyber Security Centre.

The defence contractor was exploited via an internet-facing server, with the cyber-criminals using remote administrative access to remain in its network, the report said.

The hacker was reportedly based in China, but Tehan told the Australian Broadcasting Corporation that “we don’t know and we cannot confirm exactly who the actor was.”

RelatedU.S. Cyber Command Launched DDoS Attack Against North Korea

RelatedNorth Korea Accused of Stealing Bitcoin to Bolster Finances

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Cyberwarfare

WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...

Cyberwarfare

Russian espionage group Nomadic Octopus infiltrated a Tajikistani telecoms provider to spy on 18 entities, including government officials and public service infrastructures.

Cybercrime

Patch Tuesday: Microsoft calls attention to a series of zero-day remote code execution attacks hitting its Office productivity suite.

Malware & Threats

The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently...

Cyberwarfare

Several hacker groups have joined in on the Israel-Hamas war that started over the weekend after the militant group launched a major attack.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Cyberwarfare

The war in Ukraine is the first major conflagration between two technologically advanced powers in the age of cyber. It prompts us to question...

Cybercrime

On the first anniversary of Russia’s invasion of Ukraine, cybersecurity companies summarize the cyber operations they have seen and their impact.