SEOUL - South Korean prosecutors on Tuesday blamed North Korea for cyber attacks against the country's nuclear reactor operator last December, based upon its investigation into Internet addresses used in the hacking.
The conclusion comes less than a week after a hacker believed to be behind the cyber attacks on Korea Hydro and Nuclear Power Co Ltd released more files on Twitter that are believed to have been taken in December. The investigation included last week's leak of a blueprint and test data.
"The malicious codes used for the nuclear operator hacking were the same in composition and working methods as the so-called 'kimsuky' that North Korean hackers use," a statement from Seoul central prosecutors' office said.
Prosecutors said the cyber attacks were made between December 9 and 12 by sending 5,986 phishing emails containing malicious codes to 3,571 employees of the nuclear plant operator.
South Korea had previously said it suspected the possible involvement of North Korea in the hacking, and had sought help from Chinese officials after tracing multiple Internet addresses involved to a northeastern Chinese city near North Korea. [ID:nL3N0U8265]
Last December, Korea Hydro and Nuclear Power Co Ltd, which runs South Korea's 23 nuclear reactors, said its computer systems had been hacked but only non-critical data had been stolen. A hacker had at the time demanded the shutdown of three reactors threatening "destruction" in Twitter messages.
More files were posted on Twitter on Thursday with a demand for money and an email address where the hacker said he could be contacted, claiming there had been offers from other countries to buy data related to nuclear power plants. [ID:nL4N0WE3L9]
The December hacking attacks against the unit of state-run utility Korea Electric Power Corp came after the United States accused North Korea of a serious cyber attack on Sony Pictures and vowed to respond proportionately. [ID:nL3N0UB04K]
South Korean government in a separate statement on Tuesday vowed to enhance the country's cyber security by setting up a special team in charge of cyber defence.