140114즉시_보도_정부_북한_해킹에_대한_보안조치_강화_당부.hwp (520 KB)

The Korean government reported that North Korean hacking groups were intensifying efforts to steal sensitive material from small private IT firms and security-related public figures. Activity against poorly secured small and midsize IT providers rose from several cases in early 2013 to dozens in the second half of the year, assessed as an attempt to build indirect access routes into important government and institutional networks. The same operators sent tailored malicious emails to people in diplomacy, unification, defense, media, and advisory roles, impersonating work contacts or acquaintances and using themes such as event invitations, North Korea policy, and surveys. Some January survey emails reportedly contained no malware at first, but the government warned they could be used to identify responsive targets for later malware delivery. The advisory urged tighter controls on outsourced IT maintenance, remote administration, removable media, integrity checks, and suspicious survey-style emails from apparent public institutions or acquaintances.