Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Nation-State

South Korea Nuclear Plants Stage Drill Against Cyber Attack

South Korea Nuclear Facility

South Korea Nuclear Facility

South Korea’s nuclear power plant operator launched a two-day drill Monday, testing its ability to thwart a cyber attack, after a series of online information leaks by a suspected hacker.

The drill was conducted at the country’s four nuclear plant complexes, said Korea Hydro and Nuclear Power Co (KHNP), which operates 23 nuclear reactors and supplies about 30 percent of the country’s electricity needs.

“The two-day drill is under way through simulators to ensure the safety of our nuclear power plants under cyber attacks,” said KHNP spokesman Kim Tae-Seok.

Last week a suspected hacker, using an account entitled “president of the anti-nuclear reactor group”, published a variety of information on a Twitter account.

It included designs and manuals for two reactors as well as personal information on some 10,000 KHNP workers.

In a new message on Sunday, the hacker threatened to release more information unless the government shuts down three reactors from December 25. The message warned residents in areas near the plants to stay away for the next few months.

RelatedLearn More At the SecurityWeek ICS Cyber Security Conference

State prosecutors launched an investigation but failed to find out who was responsible.

Vice energy minister Lee Kwan-Sup confirmed on Monday that the information leaked so far appeared to be from the plants at Gori and Wolsong southeast of Seoul.

The government has been handling this case with “extreme care”, although no sensitive information has been leaked so far, he said.

Lee said the leaks would not have any impact on the safety of the reactors.

The drill comes as South Korea is on guard against possible cyber attacks by North Korea after President Barack Obama said it was confirmed that the North carried out the hacking of Sony Pictures in the United States.

The FBI has cited “significant overlap” between the attack and other “malicious cyber-activity” with direct links to Pyongyang, including an attack on South Korean banks blamed on the North.

North Korea has denied involvement in the hacking of Sony Pictures, which prompted executives to halt the release of a film seen by Pyongyang as mocking its leader.

But the North threatened Sunday to hit back at the White House and other US targets if Washington sanctions it.

Related: Cyberattack on German Steel Plant Caused Significant Damage

RelatedRegister for SecurityWeek’s ICS Cyber Security Conference

Written By

AFP 2023

Click to comment

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

CISO Strategy

Cybersecurity-related risk is a top concern, so boards need to know they have the proper oversight in place. Even as first-timers, successful CISOs make...

Nation-State

The North Korean APT tracked as TA444 is either moonlighting from its previous primary purpose, expanding its attack repertoire, or is being impersonated by...

Nation-State

FBI says a North Korea-linked threat group known as Lazarus and APT38 is behind the $100 million Horizon bridge cryptocurrency heist.

Risk Management

A threat-based approach to security often focuses on a checklist to meet industry requirements but overlooked the key component of security: reducing risk.

Risk Management

CISA has published a report detailing the cybersecurity risks to the K-12 education system and recommendations on how to secure it.

Nation-State

A China-linked hackers are exploiting a vulnerability (CVE-2022-42475 ) in Fortinet FortiOS SSL-VPN, Mandiant claims.