A recent hack in South Korea shows us once again how easy it is for cybercriminals to break into secure systems. Hackers recently broke into the systems of South Korean nuclear power plants and released equipment designs and manuals online along with a very scary message.
The technical documents were dumped on social media on Friday using an account dubbed "president of the anti-nuclear reactor group.”
The group responsible for the hack has already released other technical data and employee personal information online. It also warned people to stay away from three specific power plants over the Christmas holiday. The thinly-veiled threat has to be scary for everyone who lives near those areas.
The South Korean government has said that none of the stolen information will put the power plants at risk. The documents stolen are real, but they don't pose a serious risk to the power plants.
[Lee Kwan-sup, South Korea's vice minister of trade, industry and energy] stressed that the country's nuclear reactors remain safe from serious harm despite the leaks, South Korea's Yonhap news agency reports.
Korea Hydro and Nuclear Power Co. runs all of the nuclear power plants in South Korea. The company is going to run cyberwar drills to simulate what would happen if the company comes under a major cyberattack.
Tony Burton, director of protection Systems at Thales UK, commented: “The data leak and threats made to KHNP demonstrate the significant threat that cyber attacks pose to the nuclear industry and wider Critical National Infrastructure (CNI). This data leak serves to demonstrate the challenges of making CNI secure against modern and rapidly evolving threats, particularly where ageing technology and infrastructure is being exposed.”
There's no information out there right now about who's suspected of carrying out the attack except for the "president of the anti-nuclear reactor group” account used to post them online.