Panel points to major holes in South's cyber security
전체 맥락을 이해하기 위해서는 본문 보기를 권장합니다.
Weisensee also noted that cyber security companies in Korea "never talk to each other because they are competitors, with no one sharing information or intelligence about threats" — a state of affairs he contrasted with that of the United States, which he said was characterized by "a constant flow of ideas between experts" who "understand that no one wins if crucial information is withheld."
"It's hard to see how further sanctions would deter North Korea's malicious cyber activities, because North Korean cyber attacks are aimed at earning foreign currency to support its missile and nuclear weapons programs," Oh said. "As sanctions have been tightened, we have observed that regime cohesion has actually increased."
이 글자크기로 변경됩니다.
(예시) 가장 빠른 뉴스가 있고 다양한 정보, 쌍방향 소통이 숨쉬는 다음뉴스를 만나보세요. 다음뉴스는 국내외 주요이슈와 실시간 속보, 문화생활 및 다양한 분야의 뉴스를 입체적으로 전달하고 있습니다.
South Korea’s defenses against North Korean hackers are hampered by Seoul’s lack of clear guidance for private companies and the country’s balkanized cyber security market, a risk analyst said at an expert panel on Thursday.
The discussion, titled “Deterring North Korean Cyber Attacks,” was part of a two-day panel series at the Four Seasons Hotel in Jongno District, central Seoul, hosted by the British Embassy in Seoul as part of its Cyber Week that kicked off on Wednesday.
Nils Weisensee, director of news operations at the Korea Risk Group, said that South Korean cyber security could benefit from institutional and policy changes that encourage “a culture of exchange and open discussion of weaknesses” in the country’s online infrastructure, and called on the government to impose “financial costs” on companies that do not maximize their resilience and security measures against cyber attacks.
Weisensee also noted that cyber security companies in Korea “never talk to each other because they are competitors, with no one sharing information or intelligence about threats” — a state of affairs he contrasted with that of the United States, which he said was characterized by “a constant flow of ideas between experts” who “understand that no one wins if crucial information is withheld.”
He also identified South Korea’s reliance on multiple browser plug-ins and outdated software as “highly vulnerable singular points of weakness” that expose the country to attacks by North Korean hackers.
The attacks, which have recently focused on stealing from financial institutions and especially cryptocurrency exchanges, have increased in sophistication and brazenness in the past five years, mainly due to the adoption of tighter international sanctions in 2016 and 2017 that closed off the North’s other revenue streams, according to Oh Il Seok, a research fellow at Seoul’s Institute for National Security Strategy.
“It’s hard to see how further sanctions would deter North Korea’s malicious cyber activities, because North Korean cyber attacks are aimed at earning foreign currency to support its missile and nuclear weapons programs,” Oh said. “As sanctions have been tightened, we have observed that regime cohesion has actually increased.”
Blockchain analysis company Chainalysis released a report last week that said North Korea-backed hackers stole $1.7 billion through cryptocurrency heists in 2022 — a near-fourfold increase from the country’s previous record of $429 million in 2021.
Oh noted that deepening division between the United States and allies like South Korea and Britain on one side and Russia, China and North Korea on the other would likely only encourage North Korea to ramp up illicit cyber activities, given the lower likelihood that countries like Russia would enforce existing sanctions.
Fellow panelist Chai Kyung-hoon, who serves as director of the Foreign Ministry’s North Korean nuclear policy division, noted that the North has also found ways around international bans on its labor exports through its IT workers.
“Not only do North Korean IT workers raise hard currency for the regime by working for foreign, usually English-speaking companies under false identities, but they also procure information and materiel for missile and nuclear weapons components,” Chai said.
Oh observed that while North Korea’s IT workers are highly motivated to work for the regime as “it is one of the few ways they are permitted to leave their country,” South Korea’s top-tier IT workers tend to work for private companies that pay better than the government.
“Our countries need to train skilled IT workers who will go on to work in the public sector to be beef up our cyber defenses and responses,” Oh said.
BY MICHAEL LEE [lee.junhyuk@joongang.co.kr]
Copyright © 코리아중앙데일리. 무단전재 및 재배포 금지.
- Twitch to be switched off in Korea for VOD from Feb. 7
- Korean celebrities donate to help victims of earthquake in Turkey, Syria
- Korean interior minister impeached in historic vote
- Singer, actor Lee Seung-gi to marry actor Lee Da-in on April 7
- Room cafes blamed for corrupting teen morals in Korea
- BTS leaves Grammys empty-handed third year in a row
- North Korea holds military parade to celebrate Korean People's Army
- Korean rescue workers arrive in Turkey after earthquake
- Myung Ho of boy band 8TURN denies bullying allegations
- Girl group Twice's first subunit, MiSaMo, to debut in Japan in July