S Korea cyber attack may not have come from China

22 March 2013
By Sofia Mitra-Thakur
Mobile version
Share |
Researchers of Hauri, an IT security software company investigating computer viruses, talk at their lab in the company in Seoul

Researchers of Hauri, an IT security software company investigating computer viruses, talk at their lab in the company in Seoul

This week's cyber-attack on South Korean broadcasters and banks may not have originated in China after all as the IP address has been traced to one of the victim banks, the communications regulator said.

But it couldn't rule anything out, it added.

Hackers brought down the networks of three broadcasters and two banks, initially seen as the work of North Korea using its vast army of "cyber-warriors" to cripple computer servers.

Officials in Seoul originally said they had traced the breach to a server in China, a country that has been used by North Korean hackers in the past.

North Korea has threatened to attack both South Korea and the United States after it was hit with further U.N. sanctions for its nuclear test in February.

But the Korea Communications Commission said closer investigation into the attack on NongHyup Bank showed the IP address was a virtual IP address used within the bank for internal purposes.

The IP address by coincidence matched an address registered in China, it said.

The regulator said it could not rule anything out. There were signs the malicious code used came through an overseas route and a single entity was likely responsible for the attack on all six targets.

The attack hit the network servers of television broadcasters YTN, MBC and KBS, Shinhan Bank and NongHyup. South Korea's military raised its alert levels in response.

About 32,000 computers were hit, according to the South's state-run Korea Internet Security Agency, adding it would take up to five days to fully restore functions.

It took the banks hours to restore banking services. Damage to the servers of the TV networks was believed to be more severe, although broadcasts were not affected.

North Korea has in the past targeted South Korea's conservative newspapers, banks and government institutions.

The biggest hacking effort attributed to Pyongyang was a 10-day denial of service attack in 2011 that antivirus firm McAfee, part of Intel, dubbed "Ten Days of Rain". 

It said that attack was a bid to probe the South's computer defences in the event of a real conflict.

South Korean authorities said Woori Bank was also attacked this week but was not infected.

North Korea last week complained that its own websites had been hacked, blaming the United States.

Latest Issue

E&T cover image 1606

"Where would Frankenstein and his creative mind fit into today's workplace? Should we fear technological developments or embrace them?"

E&T jobs

  • Manufacturing Development & Deployment Engineer

    BAE Systems
    • Preston, England, Lancashire
    • Negotiable

    Manufacturing Development & Deployment Engineer Would you like to help operate within a multi-disciplined environment working closely with TX, FCAS, JSF, Typhoon, Hawk and other projects to develop, deploy and support new leading edge manufacturing pr

    • Recruiter: BAE Systems

    Apply for this job

  • Information Assurance Practitioner

    BAE Systems
    • England, Cumbria, Barrow-In-Furness
    • Negotiable

    Information Assurance PractitionerWould you like to join a world class defence organisation and develop your skills in Information Assurance? We currently have a vacancy for an Information Assurance Practitioner at our site in Barrow-in-Furness, Cumbria.A

    • Recruiter: BAE Systems

    Apply for this job

  • Consultant Engineer - Information Assurance

    BAE Systems
    • Barrow-In-Furness, England, Cumbria
    • Negotiable

    Consultant Engineer - Information AssuranceWould you like to have a strategic influence on the development of Information Assurance (IA) policies for a national nuclear deterrence programme? We currently have a vacancy for a Consultant Engineer - Informat

    • Recruiter: BAE Systems

    Apply for this job

  • Systems Engineer

    National Air Traffic Services
    • Fareham, England, Hampshire
    • Negotiable

    NATS is a leading air navigation services specialist, handling 2.2 million flights in 2013/14, covering the UK and eastern North Atlantic. NATS provides air traffic control from centres at Swanwick, Hampshire and Prestwick, Ayrshire. NATS also provides ai

    • Recruiter: National Air Traffic Services

    Apply for this job

  • Software Engineer

    BAE Systems
    • England, Somerset
    • Negotiable

    Software Engineer Would you like a role which enables you to make a difference to people on the frontline? We currently have a vacancy for a Software Engineer at our site in Yeovil. As a Software Engineer, you will be developing product solutions in Java/

    • Recruiter: BAE Systems

    Apply for this job

  • Software Engineer

    BAE Systems
    • England, Hampshire, Portsmouth
    • Competitive package

    As a Software Engineer, you will be investigating how technology and data can be used to optimise the services we provide to our clients, including the Royal Navy, and will include unique pieces of equipment at the forefront of innovation.

    • Recruiter: BAE Systems

    Apply for this job

  • IM&T Manager - (Product Management)

    BAE Systems
    • England, Barrow-In-Furness, Cumbria
    • Negotiable

    IM&T Manager - (Product Management) We currently have a vacancy for an IM&T Manager - (Product Management) at our site in Barrow. As an IM&T Manager - Product Management you will be working within the planning support group, responsible for a

    • Recruiter: BAE Systems

    Apply for this job

  • Electronics Engineer

    Premium job

    Nikon Metrology Europe
    • Tring, Hertfordshire

    Nikon Metrology is looking for an Electronics Engineer to join our Electronics Team based in Tring (UK).

    • Recruiter: Nikon Metrology Europe

    Apply for this job

  • Cyber, Communication, Information and Data Scientist roles

    Premium job

    Dstl
    • Porton Down, Salisbury
    • Competitive salaries

    Information is everything. Use it to serve your country and help keep us safe.

    • Recruiter: Dstl

    Apply for this job

  • Electrical Training Officer / NVQ 3 Assessor

    Premium job

    JTL
    • Norwich, Norfolk
    • Competitive + Pension + Personal BUPA cover

    As a Qualified Electrician, you know what it takes to complete electrical work to exceptional standards of safety and quality.

    • Recruiter: JTL

    Apply for this job

More jobs ▶

Subscribe

Choose the way you would like to access the latest news and developments in your field.

Subscribe to E&T