South Korean cyberattacks linked to known DarkSeoul gang by Symantec Security
North Korea has been blamed for previous cyberattacks on South Korean banks and government
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.A shadowy network of hackers dubbed the ‘DarkSeoul gang’ has been linked to a series of cyberattacks on South Korea, with the latest assault coming earlier this week as the peninsula marked the 63rd anniversary of the start of the Korean war.
Analysts at the American computer security firm Symantec have also linked the group to the so-called Jokra attacks in March, which affected servers at South Korean broadcasters and banks. The attacks led the South Korean army to raised its state of readiness, amid speculation about the involvement of the North Korean government.
Symantec, however, said that while it uncovered digital evidence connecting the attacks to a group of 10 to 50 members, it had not traced their identities, leaving the question of their origin unanswered for now.
“The attacks conducted by the DarkSeoul gang have required intelligence and coordination, and in some cases have demonstrated technical sophistication,” the security firm said in blog post on its website.
Although Symantec could not make a connection with Pyongyang, South Korean media has in the past referred to local officials as concluding that the March attacks were indeed the handiwork of North Korean hackers.
The security firm said it expected cyber attacks to continue. “Regardless of whether the gang is working on behalf of North Korea or not, the attacks are both politically motivated and have the necessary financial support,” it warned, adding that the “DarkSeoul gang is almost unique in its ability to carry out such high-profile and damaging attacks over several years.”
The warning comes amid growing concern in capitals around the world about cyber warfare. In the US, China and Iran are often linked to cyber attacks on American businesses. Washington itself has been accused of mounting attacks on Iran. According to Edward Snowden, the former National Security Agency contractor behind the recent series of leaks to The Washington Post and The Guardian about the inner workings of the American intelligence corps, the US has also hacked Chinese mobile phone companies, and a major university.
In the Korean peninsula, while North Korea has been blamed for mounting cyber attacks on the South, Pyongyang has also proclaimed itself a victim of digital warfare. In March, the country’s state news agency blamed the US and “the South Korean puppet regime” for cyber attacks on its digital infrastructure.
Join our commenting forum
Join thought-provoking conversations, follow other Independent readers and see their replies
Comments