South Korean President Yoon Suk Yeol’s office said Wednesday that presumed North Korean hackers breached the personal emails of one of his staff members ahead of Yoon’s trip to Europe in November.
Yoon’s office said the cyberattack only affected the personal account of the unidentified employee, who violated security protocols by partially using commercial email services to handle official duties. Officials did not specify what type of information was stolen from the staff member’s personal emails but stressed that the office’s overall security system was not affected.
“We detected the case in advance of (Yoon’s) visit and took necessary measures,” Yoon’s office said in a statement to reporters. The office said it has been monitoring and defending against “constant” hacking attempts presumed to be related to North Korea but “it’s not that the presidential office’s security system got hacked.”
Yoon in November made a three-day visit to Britain, where he met King Charles III and Prime Minister Rishi Sunak, and followed it with a trip to France.
North Korea runs a huge, government-backed hacking program that has been accused of stealing large sums of money, often in cryptocurrency, to finance its illicit nuclear weapons and missile program in defiance of U.S.-led international sanctions. North Korea-backed hackers have also been accused of stealing information from outside governments, businesses and think tanks.
According to a report obtained by The Associated Press last week, a U.N. panel of experts said they are investigating 58 suspected North Korean cyberattacks between 2017 and 2023 valued at approximately $3 billion, with the money reportedly being used to help fund its development of weapons of mass destruction.
While the country has denied involvement, North Korea has been linked to major cyberattacks in past years, including a 2013 campaign that paralyzed the servers of South Korean financial institutions, the 2014 hacking of Sony Pictures, and the WannaCry malware attack of 2017.
Related: New ‘SpectralBlur’ macOS Backdoor Linked to North Korea
Related: New MacOS Malware Linked to North Korean Hackers
Related: North Korean APT Hacks Internet Infrastructure Provider via ManageEngine Flaw
