Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

ICS/OT

South Korea Accuses North of Cyber-attacks on Nuclear Plants

South Korea Nuclear Facility

South Korea Nuclear Facility

South Korea’s government accused North Korea Tuesday of carrying out cyber-attacks last December on its nuclear power plant operator, describing them as a provocation which threatened people’s lives and safety.

“We condemn North Korea’s persistent cyber-terror targeting our country and the international community,” the unification ministry said after investigators concluded the North was behind the attacks.

“It’s a clear provocation against our security,” the ministry said in a statement, accusing Pyongyang of “taking the life and safety of our people as a hostage”.

Tensions between the neighbors are running high after the South this month held joint military drills with the United States, which the North has condemned as provocative rehearsals for invasion.

Last December hackers published designs, manuals and other information about South Korean reactors on Twitter, along with personal information about workers at their operating company, Korea Hydro and Nuclear Power (KHNP).

The leaks prompted the South to heighten cyber-security and form an investigation team involving experts, government officials and state prosecutors.

The team on Tuesday said the hackers intended to cause a malfunction at atomic reactors, but failed to break into their control system.

It said malicious codes used in the cyber-attacks were similar to those which North Korean hackers have employed before.

Advertisement. Scroll to continue reading.

“We’ve reached the conclusion that the crime was committed by a group of North Korean hackers seeking to stir up social unrest and agitation in our country,” the investigators said in a statement.

They said the hackers used multiple Internet protocol addresses based in China to send some 6,000 “phishing” emails to over 3,570 former and current KHNP workers to steal the data.

‘Social chaos’

KHNP officials have said the 23 nuclear reactors, which supply about 30 percent of the country’s electricity, were safe because their control system was separated from external networks.

They also said the material leaked by the hackers was not classified and did not affect safety.

Seoul has blamed North Korean hackers for a series of cyber-attacks on military institutions, banks, government agencies, TV broadcasters and media websites in recent years.

The United States also said the North was behind a cyber-attack which damaged the computer network of Sony’s Hollywood film unit over its controversial North Korea-themed satirical film “The Interview” last year.

Pyongyang denied involvement in the Sony hack but strongly condemned the film, which features a fictional plot to assassinate leader Kim Jong-Un.

South Korea’s unification ministry on Tuesday blasted Pyongyang for seeking to throw South Korea into “social chaos” with cyber-attacks on its crucial infrastructure.

North Korea has become increasingly bellicose in recent weeks ahead of large-scale joint military drills between the US and South Korea. One of the joint drills, Key Resolve, wound up last week, while the other, Foal Eagle, is set to continue until April 24.

The exercises are always a particularly testing time for relations between the two Koreas, who remain technically at war because the 1950-53 Korean conflict ended with a ceasefire, rather than a peace treaty.

North Korea displayed displeasure when this year’s drills began by firing two short-range missiles into the sea off its east coast. Last week it fired another seven surface-to-air missiles into the sea.

RelatedRegister Your Interest For the 2015 ICS Cyber Security Conference

RelatedSouth Korea Nuclear Plants Stage Drill Against Cyber Attack

RelatedSouth Korea’s ‘Top Gun’ Cyber Warriors

RelatedCyberattack on German Steel Plant Caused Significant Damage

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Understand how to go beyond effectively communicating new security strategies and recommendations.

Register

Join us for an in depth exploration of the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects.

Register

Expert Insights

Related Content

Malware & Threats

The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently...

ICS/OT

The overall effect of current global geopolitical conditions is that nation states have a greater incentive to target the ICS/OT of critical industries, while...

CISO Strategy

Cybersecurity-related risk is a top concern, so boards need to know they have the proper oversight in place. Even as first-timers, successful CISOs make...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Cyberwarfare

Ask any three people to define cyberwar and you will get three different answers. But as global geopolitics worsen and aggressive cyberattacks increase, this...

Malware & Threats

Apple’s cat-and-mouse struggles with zero-day exploits on its flagship iOS platform is showing no signs of slowing down.