Cyber attack PCs go under the microscope
Monday 13 July 2009
South Korean police are analysing a sample of the tens of thousands of infected computers used to crash websites in South Korea and the United States, but conceded that they may not lead to the culprit.
South Korean intelligence officials suspect archrival North Korea was involved. South Korea's spy agency told lawmakers last week that a North Korean military research institute had been ordered to destroy the South's communications networks, local media reported.
In a statement over the weekend, the National Intelligence Service said it has "various evidence" of North Korean involvement, but cautioned it has yet to reach a final conclusion.
South Korean media reported in May that North Korea was running an internet warfare unit that tries to hack into US and South Korean military networks to gather confidential information and disrupt service.
The Chosun Ilbo newspaper reported that the North has between 500 and 1,000 hacking specialists. The Yonhap news agency also reported on Sunday that the North has stolen personal information of at least 1.65 million South Koreans since 2004.
Calls to the NIS seeking comment went unanswered.
The so-called denial of service attacks, in which floods of computers try to connect to a single site at the same time to overwhelm the server, targeted high-profile websites, including those of the White House and South Korea's presidential Blue House.
An Chan-soo, a senior police officer investigating the cyberattacks, said that investigators had obtained 27 computers infected with malicious computer code, known as malware, in an attempt to trace the "contamination paths" of the programs that launched the attacks.
Such programs can give hackers remote access to computers without the owners' knowledge.
An gave no details about who the computers belonged to, other than that they were from South Korean individuals. He said South Korea is also seeking to obtain hard disks and other information on six foreign servers whose files update malware programs.
An did not say where the foreign servers were located.
The state-run Korea Communications Commission has said that tens of thousands of computers were infected. The commission says it has identified and blocked five Internet Protocol, or IP, addresses in five countries used to distribute computer viruses that caused the wave of website outages, which began in the US on July 4.
They were in Austria, Georgia, Germany, South Korea and the US, a commission official said. He spoke on condition of anonymity because he is not authorised to speak to the media on the record.
The identity of the IP addresses themselves, however, provides little in the way of clarity. It is likely the hackers used the addresses to disguise themselves - for instance, by accessing the computers from a remote location. IP addresses can also be faked or masked, hiding their true location.
The assaults appear to be on the wane. No new similar cyberattacks have been reported in South Korea since Friday evening, the commission said.
Life & Style blogs
Ebola outbreak: Why has a disease that's only ever killed 2,000 people captivated the darkest side of our imagination?
Ebola virus: UK health officials issue warning to doctors as experts admit the outbreak 'is not under control'
Topless sunbathing is no longer 'du jour' in France
Watch: Vogue Italia's plus-size models in fetish-inspired lingerie shoot
Ebola: UK is ready to deal with outbreak, says Foreign Secretary Philip Hammond
The secret report that helps Israel hide facts
Land for gas: Merkel and Putin discussed secret deal could end Ukraine crisis
Woman and two children killed by mob in riots over 'blasphemous' Facebook post in Pakistan
A day in the life of Vladimir Putin: The dictator in his labyrinth
Putin is 'thuggish, dishonest and reckless', says British ambassador to US
Richard Dawkins tweets: 'Date rape is bad, stranger rape is worse'
- 1 Sabina Altynbekova, the girl branded 'too good looking' for volleyball, says social media obsession with her is a 'bit much'
- 2 Disney heiress Abigail disowns her share of family profits in West Bank company
- 3 Israel's propaganda machine is finally starting to misfire
- 4 Zayn Malik on Israel-Gaza: One Direction singer bombarded with Twitter death threats after posting #FreePalestine
- 5 'Hello mum, this is going to be hard for you to read ...'
- < Previous
- Next >
iJobs Gadgets & Tech
£200 - £300 per day: Ashdown Group: IT Trainer - Marlow, Buckinghamshire - £25...
£55000 - £65000 per annum + Benefits: Progressive Recruitment: SAP FICO SOLUTI...
£30000 per annum: Ashdown Group: A highly reputable software house is looking ...
£60000 - £70000 per annum + Benefits: Progressive Recruitment: SAP PROJECT MAN...