Cyber attacks originating from China account for 5% of all incidents in terms of number of incidents, but account for 21% in terms of severity and scale of damage. The National Intelligence Service plans to raise its alert level to threats such as China’s increasing cyber threats, China’s expansion of influence, and public opinion warfare.
Baek Jong-wook, Third Deputy Director of the National Intelligence Service, emphasized at a press conference held at the National Cyber Security Center on the 24th, “This is a time when we desperately need to prepare for election system hacking, the spread of fake news, and China’s influence operations.”
Recently, China’s cyber threats are increasingly being carried out in a covert manner.
Several years ago, a Chinese hacker hacked Company A’s server and hidden malware disguised as open software. There was no significant activity for a long time, but over the years, malware was used to hack several companies. The National Intelligence Service detected signs of attack and took measures to remove malicious code and prevent the spread of damage.
In addition, an intrusion using a satellite communication network occurred due to suspected Chinese hacking. The hacker collected and analyzed satellite communication signals and then disguised normal system access. There was an attempt to infiltrate the government’s administrative network through the satellite network management system, but it was blocked early.
The National Intelligence Service said, “This is the first case of hacking targeting the national satellite communication network,” and added, “We are improving the problems by comprehensively inspecting the operation status of the national satellite communication network.”
In addition, the National Intelligence Service believes that attempts to increase China’s influence are continuing. Chinese media PR companies opened about 200 sites disguised as domestic media companies and posted pro-China and anti-American content. The NIS also discovered that these posts were being spread through social media (SNS) influencers.
An official from the National Intelligence Service said, “We are working through the Ministry of Culture, Sports and Tourism to block access to sites due to copyright law violations,” and added, “In order to apply the law, there must be a direct report from the affected media company. “Attention and cooperation are needed,” he said.
As inter-Korean relations become strained, cyber attacks from North Korea are expected to intensify.
The National Intelligence Service said, “As sanctions against North Korea and the pandemic have eased, it is not easy to receive work orders, so even North Korea’s information technology (IT) foreign currency earning organizations are hacking,” adding, “They are concealing malware in the software development projects they participated in by forging ID cards and resumes.” “There are circumstances,” he explained. North Korea’s IT organization is known to be about three times the size of an organization specializing in hacking.
In addition, the National Intelligence Service cited the following characteristics of recent threats from North Korea: Kim Jong-un’s presentation of hacking goals and changes in attack targets based on interests, attempts to steal defense technology from 25 countries, including Russia, financial hacking targeting individuals, and use of artificial intelligence technology.
Baek Jong-wook, Third Deputy Director of the National Intelligence Service, said, “Recently, North Korea has been blatantly making threats by deleting the concepts of nation and unification, talking about reducing or abolishing inter-South Korea organizations on related websites, and defining our country as a hostile country.” He added, “There is a saying that a barking dog doesn’t bite. “We must be vigilant and not forget that cyber attacks always follow when inter-Korean relations are strained and criticism against South Korea is high,” he said.
The National Intelligence Service’s cybersecurity policy this year is to: △Improve national and public institution network security policies △Support the development of quantum-resistant cryptography technology △Strengthen the security of the information and communication technology (ICT) supply chain such as communication equipment △Hold international cybersecurity events △Establish an international cyber training center △National We plan to strengthen our research and development base, including the Security Technology Research Institute.
Source: Donga
Mark Jones is a world traveler and journalist for News Rebeat. With a curious mind and a love of adventure, Mark brings a unique perspective to the latest global events and provides in-depth and thought-provoking coverage of the world at large.