Cybersecurity News that Matters

Cybersecurity News that Matters

[Weekend Briefing] Ransomware attack at taxi company causes chaos in South Korea

by Kuksung Nam, Sangseon Kim, Dain Oh

Jul. 22, 2022
11:20 AM GMT+9

Hello, it’s Kuksung Nam and Dain Oh in South Korea. We have picked five news stories for you. For the next week, we will have summer break. Have a great weekend!

1. Ransomware Attack at Taxi Company Causes Chaos in South Korea

A ransomware attack on July 17 paralyzed the networks of a taxi service company, which provides the operating system for ride hailing services through smartphone applications and phone calls. Taxi drivers and passengers across the country, including the cities of Busan, Daejeon, and some parts of Gangwon province, were affected by the attack for more than three days. “2933 taxi cabs were using the operation system that was infected with ransomware. We have been notified that approximately 80% of the cabs are back in business,” said an official in the city of Daejeon on Friday. The company paid the ransom to the hacker and got the decryption key for restoring their computer system. “We are still recovering the servers that are infected. We are not sure when the servers will be fully recovered,” said the official of the company. The local news reported that the hacker used a Russian IP address, and the police are investigating the possibility of both domestic and foreign actors.

2. South Korean Court Rules in Favor of Protecting Personal Data

The Constitutional Court of South Korea ruled on Thursday in a 9-0 decision that the Telecommunications Business Act violates the constitutional rights of the individual to disclose and determine the use of their personal data. Under the current Telecommunications Business Act, telecommunication companies in South Korea can reveal the personal data of specific users if requested by law enforcements. The personal data includes names, registration numbers, addresses, and cell phone numbers. Furthermore, the companies are not obliged to notify users whose information has been delivered to the investigators. “The act [of law enforcement] of requesting and receiving the personal information from the telecommunication companies does not violate the constitution,” the Constitutional Court said in a statement. “The act of not notifying the individual of the transaction violates the constitution.”

3. Drug Suspects Who Grew Cannabis and Sold It Through the Dark Web Were Arrested

South Korean law enforcement apprehended a total of 67 drug suspects, including those who grew cannabis in city stores, a local police agency announced Thursday. According to a press release by Gyeonggi Nambu Police Agency, a police agency which oversees the southern province of Gyeonggi-do, three suspects organized a drug gang from August 2021 to May 2022 and cultivated cannabis in four stores, located in Seoul, the capital city of South Korea. The gang divided up the roles, such as supplying, recruiting, and money laundering, and sold cannabis through the dark web. Some of the other suspects used an abandoned factory in Gyeonggi province as a cannabis farm and sold cannabis through the dark web from March to August of last year. Eleven suspects were found to be related to cultivating and selling cannabis and 56 suspects were found to have bought the suspects’ cannabis on the dark web. The police arrested the buyers simultaneously. “Even though criminals are using the dark web and virtual assets in order to avoid detection, the police are utilizing a cutting-edge technology to track criminals,” said the spokesperson for the agency.

4. Seoul National University Hospital Data Breach May Put 810,000 Patients at Risk

A cyber-attack on one of the largest university hospitals in South Korea may have compromised the personal information of as many as 810,000 patients, according to the hospital’s data breach report.  The Seoul National University Hospital, which provides medical service to 9,000 outpatients per day, suffered a cyber-attack in June 2021. On July 8, the hospital said in a notice on its website that the police had discovered an additional data breach while investigating the cyber-attack. Although the hospital revealed the types of data that may have been compromised, the organization did not disclose the number of patients that have been affected by the data breach. The revelation came after South Korean Congressman Jeon Yong-gi released the hospital’s report to the press on Monday. Meanwhile, a local news agency reported last year that a hacking group sponsored by the North Korean government could be responsible for the attack.

5. South Korean Officials Raid Crypto Exchanges in Probe of Luna Crash

The investigation of the meltdown of the cryptocurrencies Terra and Luna is taking a step forward in South Korea. The Seoul Southern District Prosecutors Office said they had executed a search warrant Wednesday at 15 properties as part of an investigation into a fraud charge filed against the founder and the co-founder of Terraform Labs. Terraform Labs is the company behind the Terra and Luna stablecoins. The founder and the co-founder of the company are facing a legal challenge in South Korea over the collapse of the Terra and Luna cryptocurrencies. Seven local cryptocurrency exchanges were raided that night over the same claims, according to the officials. The Seoul Southern District Prosecutors Office said that they could not disclose information about the data the prosecutors collected because the case is still under investigation. The local news reported on July 20 that a team of investigators carried out the search and seizure operation for the Luna and Terra transaction records of the founder and the co-founder of Terraform Labs.

Subscription

Subscribe to our newsletter for the latest insights and trends. Tailor your subscription to fit your interests:

By subscribing, you agree to our Privacy Policy. We respect your privacy and are committed to protecting your personal data. Your email address will only be used to send you the information you have requested, and you can unsubscribe at any time through the link provided in our emails.

  • Kuksung Nam
    : Author

    Kuksung Nam is a journalist for The Readable. She has extensively traversed the globe to cover the latest stories on the cyber threat landscape and has been producing in-depth stories on security and...

    View all posts
  • Sangseon Kim
  • Dain Oh
    : Author

    Dain Oh is a distinguished journalist based in South Korea, recognized for her exceptional contributions to the field. As the founder and editor-in-chief of The Readable, she has demonstrated her expe...

    View all posts
Stay Ahead with The Readable's Cybersecurity Insights