South Korea fingers North for defence contractor hack

Navy builder popped.

By Darren Pauli

Posted in Security, 11th May 2016 02:28 GMT

South Korea is fingering its northern neighbours for an attack last month against a navy defence contractor.

North Korea's regime says the attribution is political and dubbed the attacks fabricated.

Details of the hack of Hanjin Heavy Industries have not been disclosed but local broadcaster Yonhap reports the government has kept open the possibility of North Korean involvement.

"After identifying signs that Hanjin Heavy Industries may have been hacked on April 20, the Defense Security Command is currently leading a security investigation into whether any military secrets were leaked and whether North Korea was involved," unnamed officials told Yonhap.

The contractor is responsible for the production of Seoul's latest naval vessels and amphibious assault vehicles including the ROKS Dokdo.

It is the latest security breach of South Korea's defence industry since hackers in November popped contractor LIG Nex1 and the Agency for Defense Development, both responsible for building its AESA radar.

North Korea is said to have well-structured elite hacking teams. One unit dubbed Bureau 121 is claimed to be situated in the nation's spy agency the General Bureau of Reconnaissance, and is fingered for intrusions into network infrastructure of foreign states.

Security researchers identified the so-called Lazarus Group as the unit behind the 2014 flaying of Sony Pictures, a hack which the US pinned firmly on Pyongyang. ®

Sign up to our NewsletterGet IT in your inbox daily

2 Comments

More from The Register

Ignore that FBI. We're the real FBI, says the FBI that's totally the FBI

Don't open that malware mail from the Feds that's not from the Feds, Feds warn

First shots at South Korea could herald malware campaign of Olympic proportions

Russia, Norks and dog lovers all potential perps, say pundits

Microsoft emergency update: Malware Engine needs, erm, malware protection

Stop appreciating the irony and go install the patch now

UK.gov joins Microsoft in fingering North Korea for WannaCry

I can’t go into the details of our intelligence, but...

North Korea's finest spent 2017 distributing RATs, wipers, and phish

And sent them mostly to South Korea, naturally

Microsoft patched more Malware Protection Engine bugs last week

Redmond's out-of-band advisory landed after the bugs were fixed

Paranoid Android: Antivirus app-makers resolve MitM vulnerability

Attack loophole in Panda app sealed

'Crazy bad' bug in Microsoft's Windows malware scanner can be used to install malware

Critical update for security engine rushed out the door

Korea extends factory automation tax break, is accused of levying 'robot taxes' anyway

Due to expire in 2017, subsidy gets two-year reprieve

North Korea attacks Bitcoin bods to swell its war chest says FireEye

BTC isn't explicitly covered by sanctions and Kim could launder it into useful currencies