Symantec reported that South Korean banks and local broadcasting organizations were disrupted by a cyberattack that included ISP defacement and server outages. The defacement showed an animated page with three skulls and a message from actors calling themselves the “Whois” team, while affected banking customers could not access online accounts. Symantec detected the suspected malware as Trojan Horse, Trojan.Jokra, and WS.Reputation.1, and said reported hard-drive wiping was consistent with the outages observed in the region. The report did not identify the source or intrusion path, noting only that the activity occurred amid heightened political tensions on the Korean peninsula and could represent either a clandestine attack or nationalist hacktivism.