North Korea successfully hacks email of South Korean President’s aide, gains access to sensitive information

2 months ago AndyC

The office of South Korean president Yoon Suk Yeol has confirmed that it believes North Korea hacked into the emails of one of its staff members.

North Korea successfully hacks email of South Korean President's aide, gains access to sensitive information

The office of South Korean president Yoon Suk Yeol has confirmed that it believes North Korea hacked into the emails of one of its staff members.

The hack of an unidentified member of the presidential staff’s personal email account occurred in the run-up to a three-day visit to Europe in November, where Yoon met British Prime Minister Rishi Sunak, King Charles, and French president Emmanuel Macron.

Now, you might be thinking that the hack of a personal email account isn’t that bad – after all, there is no indication that the North Korean hackers managed to compromise the official computer systems of the South Korean president’s office.

Unfortunately, however, the office has confirmed that the staff member in question had violated security protocols by using the personal email account for official duties.

In other words, he or she had been forwarding sensitive official information to and from his personal email account.

“We detected the case in advance of the visit and took necessary measures,” President Yoon’s office said in a statement to reporters, emphasising that “it’s not that the presidential office’s security system got hacked.”

BBC News reports that local media have quoted a government source as saying that Yoon’s trip schedule had been accessed by the hackers, and that messages sent by the president had also been stolen.

It is unclear how precisely the staff member’s personal email account was hacked – but my guess is that it may have been something as simple as a carefully-constructed phishing email which duped the unsuspecting aide into handing over their password.

This is believed to be the first time that North Korean hackers have successfully hacked a member of the South Korean president’s team. North Korea has had a long history of engaging in cybercrime, using the internet to steal huge amounts of cryptocurrency to fund its nuclear weapons programme, for instance.

According to the South Korean government, the security breach was detected before the president’s trip to Europe had begun, and that measures were taken to bolster security. These included raising awareness amongst office workers of cybersecurity issues to ensure similar mistakes did not happen again in future.

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: , , , , , , , , , , , , , , , ,

More Stories

Multiple Brocade SANnav SAN Management SW flaws allow device compromise

Multiple Brocade SANnav SAN Management SW flaws allow device compromise

2 hours ago AndyC
ICICI Bank exposed credit card data of 17000 customers

ICICI Bank exposed credit card data of 17000 customers

8 hours ago AndyC
Okta warns of unprecedented scale in credential stuffing attacks on online services

Okta warns of unprecedented scale in credential stuffing attacks on online services

14 hours ago AndyC
Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION

20 hours ago AndyC
Targeted operation against Ukraine exploited 7-year-old MS Office bug

Targeted operation against Ukraine exploited 7-year-old MS Office bug

20 hours ago AndyC
Weekly Update 397

Weekly Update 397

20 hours ago AndyC

You may have missed

Kaspersky boosts email security features after 77% of firms hit by cyber attacks

Kaspersky boosts email security features after 77% of firms hit by cyber attacks

2 hours ago AndyC
Multiple Brocade SANnav SAN Management SW flaws allow device compromise

Multiple Brocade SANnav SAN Management SW flaws allow device compromise

2 hours ago AndyC
Creating new opportunities with AI-driven automation

Creating new opportunities with AI-driven automation

2 hours ago AndyC
Barracuda report explores challenges in managing cyber risks

Barracuda report explores challenges in managing cyber risks

5 hours ago AndyC
Aqua Security launches SaaS cloud security platform in Australia

Aqua Security launches SaaS cloud security platform in Australia

5 hours ago AndyC

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.