Stories
Slash Boxes
Comments

SoylentNews is people

posted by janrinok on Tuesday March 26, @05:52PM   Printer-friendly

https://www.38north.org/2024/03/revisiting-the-2014-korea-hydro-and-nuclear-power-hack-lessons-learned-for-south-korean-cybersecurity/

In December 2014, North Korea's cyber group Kimsuky conducted an attack on the South Korean Korea Hydro and Nuclear Power (KHNP), leaking personal information of 10,000 employees, reactor blueprints, manuals, electricity charts, radiation methods and more. Despite the impact of the 2014 KHNP hack on South Korea, it has figured minimally in English-language cybersecurity literature.

[...] In 2013, North Korea used the DARKSEOUL malware to paralyze ROK broadcasting stations, banks and government sites after its long-term espionage campaign, Operation Troy. In December 2014, however, despite those precautionary steps, KHNP was hacked. Kimsuky used a Twitter account named "president of anti-nuclear reactor group" to post sensitive documents and blueprints from KHNP and threatened to leak more information unless specific reactors in Gori and Wolseong were shut down by Christmas.

[...] As with most research regarding cyber operations and the DPRK, the scarcity of publicly available information posed a challenge. This was especially true for the period from 2014 to 2022 when the Moon Jae-in administration in South Korea was reluctant to publicly attribute cyber operations to North Korea for political purposes.

[...] The 2014 KHNP hack marked a pivotal turning point for ROK cyber policy. While North Korea's Kimsuky was successful in stealing sensitive information and publicly demonstrating the vulnerabilities of the South Korean nuclear energy industry to cyberattacks.


Original Submission

This discussion was created by janrinok (52) for logged-in users only. Log in and try again!
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
(1)
  • (Score: 1, Troll) by gawdonblue on Tuesday March 26, @08:42PM (1 child)

    by gawdonblue (412) on Tuesday March 26, @08:42PM (#1350486)

    Are there new cybersecurity learnings?

    Or is it just a "North Korea is bad, mkay" story in case we forgot, what with so many other villains of the week currently around?

    I would read TFA but the URL strongly suggests it is just the latter, and ... nah.

    • (Score: 0, Insightful) by Anonymous Coward on Wednesday March 27, @01:00AM

      by Anonymous Coward on Wednesday March 27, @01:00AM (#1350512)

      How dare you skip the two minutes hate, peasant?!

(1)