Feeds

Naver raver charged over 25 MEEELLION account breach palaver

£90,000 heist made possible after South Korean portal yields its secrets

Next gen security for virtualised datacentres

A 31-year-old South Korean has been charged with using stolen personal information to hack the online accounts of 25 million users of the country’s popular Naver portal.

The Asian nation’s National Police Agency said the suspect purchased the data – including names, addresses, internet IDs and passwords – back in August last year, according to the Korea Herald.

The man, surnamed Seo, apparently then used the details to hack the accounts and send out spam messages and other “illicit emails”, the content of which is not mentioned in the report.

Seo is said to have made 160 million won (£90,000) worth of ill-gotten gains.

Also nabbed was a hacker by the name of Hong who developed information slurping malware. Some of the personal info he lifted from Naver subscribers was apparently used by Seo to log-in to the accounts.

The police charged three accomplices of Seo and are broadening the investigation to 86 others who are said to have bought malware developed by Hong.

For the record, a Naver spokesman distanced the company from the attack, telling the paper that the problem was down to the ready availability of personal info on the black market in Korea and not the fault of the internet giant.

He’s got a point. South Korea has seen a spate of high profile mega-breaches of late, exposing the data of tens of millions of locals.

Earlier this month account information belonging to 12 million customers of telco KT Corp was half-inched.

In January it emerged that the personal details of around 20 million people may have been breached after an employee at the Korea Credit Bureau was arrested on suspicion of selling the data to marketing firms.

However, the biggest so far was the attack on social site Cyworld and the Nate web portal, which exposed personal details on as many as 35 million users. ®

The essential guide to IT transformation

More from The Register

next story
Goog says patch⁵⁰ your Chrome
64-bit browser loads cat vids FIFTEEN PERCENT faster!
Chinese hackers spied on investigators of Flight MH370 - report
Classified data on flight's disappearance pinched
NIST to sysadmins: clean up your SSH mess
Too many keys, too badly managed
Scratched PC-dispatch patch patched, hatched in batch rematch
Windows security update fixed after triggering blue screens (and screams) of death
Researchers camouflage haxxor traps with fake application traffic
Honeypots sweetened to resemble actual workloads, complete with 'secure' logins
Attack flogged through shiny-clicky social media buttons
66,000 users popped by malicious Flash fudging add-on
prev story

Whitepapers

Best practices for enterprise data
Discussing how technology providers have innovated in order to solve new challenges, creating a new framework for enterprise data.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Advanced data protection for your virtualized environments
Find a natural fit for optimizing protection for the often resource-constrained data protection process found in virtual environments.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?