Menu Content
Go Top

Domestic

N. Korea Fakes 'Code Signing' to Spread Spyware

Written: 2016-05-31 15:17:27Updated: 2016-06-01 15:12:16

Anchor: South Korean government investigators have concluded that North Korean hackers were behind an attempted cyber attack caught midway earlier this year. Investigators said that the hackers faked a safety confirmation needed before downloading a program, and installed malware to spread viruses.
Our Bae Joo-yon has more.
 
Report: South Korean prosecutors have concluded that North Korea was behind a cyber attack in February that was discovered as malicious codes were being spread.

A team of cyber crime investigators announced Tuesday the results of their probe into the case, three months after detecting the attack in progress.

Investigators said that North Korean hackers in November snuck into an information security company's internal network and stole digital certificates to forge a software 'code signing,' an assurance before an installation that the program to be downloaded has not been compromised.

Using the fake safety confirmation, the hackers accessed a Web server of an academic organization in February and installed spyware. A total of 19 computers of ten other organizations became infected after they logged into the server. 
 
Prosecutors said that between last November and January of this year, an Internet Protocol(IP) address based in the North logged into the academic organization’s Web server 26 times.
 
Investigators suspected that the North circulated the malware to seize data stored in personal computers to break into key South Korean networks.
 
They said that no additional damage had occurred as the fake code signing was destroyed and the malware was deleted.
Bae Joo-yon, KBS World Radio News. 


Editor's Pick

Close

This website uses cookies and other technology to enhance quality of service. Continuous usage of the website will be considered as giving consent to the application of such technology and the policy of KBS. For further details >