Pierluigi Paganini November 11, 2024

South Korea claims Pro-Russia actors intensified cyberattacks on national sites after it decided to monitor North Korean troops in Ukraine.

South Korea’s government blames pro-Russia threat actors for an intensification of cyberattacks on national sites after it decided to monitor North Korean troops in Ukraine.

South Korea reports that over 10,000 North Korean troops are now deployed in Russia, including in the frontline Kursk region, to support the war in Ukraine. This development, confirmed by Ukraine and the U.S., raises concerns that North Korea’s involvement could escalate the conflict, potentially involving a third state.

Per a South Korean president’s office statement, the government is actively countering increased DDoS attacks from pro-Russian hacktivist groups, targeting public and private websites. Seoul observed an increase in the attacks since North Korea sent troops to Russia. The DDoS attacks primarily impact civilian and government sites, with the National Intelligence Service’s Cyber Crisis Management Division monitoring and coordinating responses. Some websites experienced temporary outages, but no major damage occurred.

“The government is actively responding to distributed denial of service (DDoS) attacks targeting some public and private websites. Cyber ​​attacks by pro-Russian hacktivist groups on our country have occurred sporadically in the past, but have become more frequent since North Korea sent troops to Russia and entered the war in Ukraine.” reads the statement

“Their attacks mainly consist of hacking of civilian targets or distributed denial of service (DDoS) attacks targeting government agencies’ websites.” continues the statement.

“Access to some organizations’ websites has been temporarily delayed or disconnected, but other than that, there has been no significant damage.”

Seoul believes that the attacks will continue depending on the situation in Ukraine, for this reason, the South Korean government plans to enhance cyber threat preparedness through monitoring and ongoing collaboration among relevant agencies.

According to The Record Media, pro-Russian hacker groups behind the recent attacks on South Korea includes NoName057(16), Z Pentest, and Alligator Black Hat.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, South Korea)