N. Koreans blamed for cyberattacks using fake S. Korean gov't addresses

이선영 기자 | 기사입력 2021/06/28 [10:50]

N. Koreans blamed for cyberattacks using fake S. Korean gov't addresses

이선영 기자 | 입력 : 2021/06/28 [10:50]

▲ ESTsecurity suspects North Korea-linked hacking groups, such as Kimsuky and Thallium, to be responsible for the attacks.

 

North Korea-linked hackers are suspected of using manipulated email addresses from the South Korean government in carrying out cyberattacks to steal user information, according to cybersecurity firm ESTsecurity.

 

ESTsecurity detected a cyberattack on Tuesday using a manipulated email address from the Ministry of Unification and another one on Thursday using an email from the state-run Korea Institute for National Unification.

 

The cybersecurity firm added that it traced the two incidents to a server previously used for other cyberattacks, including one against the Institute for National Security Strategy on June 18.

 

ESTsecurity suspects North Korea-linked hacking groups, such as Kimsuky and Thallium, to be responsible for the attacks.

 

Thallium often targets officials and journalists in the security and foreign relations sectors.

 

When users click the links sent by hackers, they would be asked to enter their email passwords, allowing hackers to steal the information.

 

The cyberattacks are the latest hacking incidents suspected of being done by North Korean groups.

 

Last month, hackers targeted the state-run nuclear research institute.

  • 도배방지 이미지

뉴스레터 구독하기

세상을 바꾸고 있는 블록체인과 IT 관련 이야기를 쉽고 재미있게 만나보세요.

개인정보 수집 및 이용

뉴스레터 발송을 위한 최소한의 개인정보를 수집하고 이용합니다. 수집된 정보는 발송 외 다른 목적으로 이용되지 않으며, 서비스가 종료되거나 구독을 해지할 경우 즉시 파기됩니다.

IT/Global 많이 본 기사
광고