North Koreans targeted US-South drills: Seoul police

Published
This undated picture released from North Korea’s official Korean Central News Agency (KCNA) on August 21, 2023 shows a strategic cruise missile being launched from a guard ship marine of the 2nd Surface Ship Squadron of the East Sea fleet, also known as the Sea of Japan, part of a Korean People’s naval unit, at an undisclosed location at sea off the coast. — AFP
This undated picture released from North Korea’s official Korean Central News Agency (KCNA) on August 21, 2023 shows a strategic cruise missile being launched from a guard ship marine of the 2nd Surface Ship Squadron of the East Sea fleet, also known as the Sea of Japan, part of a Korean People’s naval unit, at an undisclosed location at sea off the coast. — AFP

SEOUL: Suspected North Korean hackers have attempted an attack targeting a major joint military exercise between Seoul and Washington that starts on Monday, South Korean police said.

South Korea and the United States will kick off the annual Ulchi Freedom Shield drills on Monday through August 31 to counter growing threats from the nuclear-armed North.

Pyongyang views such exercises as rehearsals for an invasion and has repeatedly warned it would take “overwhelming” action in response.

The hackers — believed to be linked to a North Korean group dubbed Kimsuky — carried out “continuous malicious email attacks” on South Korean contractors working at the allies’ combined exercise war simulation centre, the Gyeonggi Nambu Pro­vin­cial Police Agency said in a statement on Sunday.

“Police investigation confirms that North Korean hacking group was responsible for the attack,” it said in a statement, adding that military-related information was not stolen.

A joint investigation by the police and the US military found that the IP address used in the latest attack matched one identified in a 2014 hack against South Korea’s nuclear reactor operator blamed on the group, according to the statement.

The Kimsuky hackers use “spear phishing” tactics — sending malicious attachments embedded in emails — to exfiltrate desired information from victims.

According to findings by the US Cybersecurity and Infrastructure Secu­rity Agency in 2020, Kimsuky is “most likely tasked by the North Korean regime with a global intelligence gathering mission.” The group — believed to be active since 2012 — targets individuals and organisations in South Korea, Japan, and the United States.

Published in Dawn, August 21st, 2023

Opinion

Editorial

America at 250
07 Jul, 2026

America at 250

THOUGH America’s 250th independence anniversary observed on Saturday is a significant milestone, the celebrations...
Ravi encroachments
07 Jul, 2026

Ravi encroachments

SUPARCO’S satellite imagery reveals the rapid expansion of Lahore into the floodplains of the Ravi river, with the...
Misdirected justice
07 Jul, 2026

Misdirected justice

ACHILD will be tried in a court of law over January’s deadly Gul Plaza fire that claimed 72 lives, but not, it...
Islamic banking
Updated 06 Jul, 2026

Islamic banking

THE roadmap for eliminating riba from Pakistan’s financial system from 2028 offers some clarity on how the...
Prison reforms
06 Jul, 2026

Prison reforms

IF nothing else, it was good to see the four provincial chief executives sharing a common platform. The chief...
Preserving Taxila
06 Jul, 2026

Preserving Taxila

TAXILA is far more than a collection of ancient ruins. It is one of South Asia’s greatest archaeological ...