Cybersecurity News that Matters

Cybersecurity News that Matters

Daily briefing: Vulnerable CCTVs still in operation

Illustration by Areum Hwang, The Readable

by Dain Oh

Oct. 02, 2024
8:40 PM GMT+9

Daily Briefing is a curated listicle made available by The Readable. We select a handful of significant stories worth sharing with our readers and present them in an easy-to-read, accessible format. Dain Oh and Minkyung Shin collaborate in monitoring, selecting, and reviewing the news articles, with Arthur Gregory Willers contributing to improve the overall readability of the briefing.


1. South Korean ministry still using vulnerable CCTVs despite intelligence agency’s warning – South Korea’s Newsis

According to a report from the Ministry of Unification, received by South Korean lawmaker Kim Gunn of the National Assembly’s Foreign Affairs and Unification Committee on October 2, the Ministry of Unification continues to use Chinese-made IT equipment, including CCTV systems that are vulnerable to hacking, despite corrective measures requested by the National Intelligence Service (NIS).

Last year, the NIS inspected more than 32,000 Chinese-made IT devices in public institutions and found significant vulnerabilities, and it recommended their replacement. However, follow-up actions have been insufficient, and the devices remain in use, according to Kim. The lawmaker emphasized the urgency of replacing the equipment, particularly given the sensitive information on North Korea handled by the Ministry of Unification. He therefore called for swift action to enhance security measures.

The controversy over data leaks tied to Chinese-made equipment has been ongoing. In 2017, it was revealed that more than 60 Chinese-made drones, acquired by the Ministry of National Defense, were being used with their cameras removed due to concerns about video data leaks. Last year, malware was found in Chinese-made weather observation equipment used by the Korea Meteorological Administration, further heightening security concerns.

2. Doctor arrested for doxing other doctors who did not participate in strike – South Korea’s News1

According to the Seoul Metropolitan Police Agency’s Cybercrime Investigation Unit, a resident doctor named Jeong was arrested on September 27 and referred for prosecution for allegedly creating and distributing a blacklist containing personal information of doctors and medical students who did not participate in collective actions by the medical community.

Jeong is accused of repeatedly posting the blacklist in medical online communities, such as Telegram and MediStaff in July. The list reportedly included detailed information about the victims, such as their names, affiliated hospitals, and universities.

The Seoul Central District Court issued an arrest warrant for Jeong on September 20, citing concerns about evidence tampering. Since March, police have investigated 42 cases related to the blacklist incident and have referred 36 individuals for prosecution.

3. Related article: Doxing threats against non-participating doctors continue amid South Korea ongoing doctors’ strike – The Readable

Illustration by Daeun Lee, The Readable

4. UK, US, and Australia impose sanctions on Russia-based Evil Corp cybercrime group – BBC

The United Kingdom, United States, and Australia have imposed sanctions on 16 individuals linked to Evil Corp, a Russia-based cybercrime group accused of stealing approximately $300 million over nearly a decade. Among those sanctioned is Maksim Yakubets, the group’s leader, along with his father, Viktor Yakubets, who was previously believed to be uninvolved. The sanctions are part of a multinational effort to disrupt Evil Corp and the cybercrime group LockBit.

Maksim Yakubets, who was sanctioned in 2019 with a $5 million bounty on his head, is now connected to high-profile Russian figures, including former FSB official Eduard Benderskiy. The sanctions also target other members of the Yakubets family and close associates for laundering stolen funds and facilitating the group’s criminal activities. This action coincides with the arrests of four individuals in the UK, believed to be linked to LockBit and Evil Corp.

Authorities emphasized the connections between Evil Corp, Russian state entities, and other cybercrime groups like LockBit, highlighting an increasing collaboration among hackers. The operation, led by the UK’s National Crime Agency (NCA), is part of a broader effort to dismantle two of the world’s most notorious cybercrime groups and send a strong message against Russian-backed cyberattacks.

5. US and T-Mobile settle data breach case for $31.5 million – Reuters

T-Mobile has agreed to a $31.5 million settlement with the Federal Communications Commission (FCC) to resolve investigations into multiple data breaches affecting millions of U.S. consumers over the past three years. The settlement includes a $15.75 million civil penalty and an additional $15.75 million investment over the next two years to enhance the company’s cybersecurity measures.

The data breaches, which occurred in 2021, 2022, and 2023, impacted millions of current, former, and potential T-Mobile customers. The 2021 breach alone affected 76.6 million U.S. consumers, while the 2023 breach impacted 37 million. These incidents prompted the FCC to investigate the company’s security vulnerabilities.

As part of the settlement, T-Mobile, which serves 119.7 million customers, has committed to addressing fundamental security weaknesses, improving its cyber hygiene, and adopting advanced security practices such as zero trust architectures and phishing-resistant multi-factor authentication to prevent future breaches.


Editor’s Note: The daily briefing will return on October 4 due to the South Korean national holiday on October 3.

Subscription

Subscribe to our newsletter for the latest insights and trends. Tailor your subscription to fit your interests:

By subscribing, you agree to our Privacy Policy. We respect your privacy and are committed to protecting your personal data. Your email address will only be used to send you the information you have requested, and you can unsubscribe at any time through the link provided in our emails.

  • Dain Oh
    : Author

    Dain Oh is a distinguished journalist based in South Korea, recognized for her exceptional contributions to the field. As the founder and editor-in-chief of The Readable, she has demonstrated her expe...

    View all posts
Coauthor:
Stay Ahead with The Readable's Cybersecurity Insights