Daily Briefing is a curated listicle made available by The Readable. We select a handful of significant stories worth sharing with our readers and present them in an easy-to-read, accessible format. Dain Oh and Minkyung Shin collaborate in monitoring, selecting, and reviewing the news articles, with Arthur Gregory Willers contributing to improve the overall readability of the briefing.
Editor’s note: South Korea’s National Assembly has begun its annual government inspection. During the audit, Assembly members review the security posture of government agencies, often uncovering their vulnerabilities. The first two stories in this briefing highlight the findings from this yearly effort.
1. Chinese CCTVs disguised as domestic products and installed in key national facilities across Korea – South Korea’s Money Today
An investigation has uncovered that about 30,000 Chinese-made CCTV units, disguised as domestic products, have been installed in key national facilities across South Korea, including military bases, local governments, and state-owned enterprises. Data obtained by Rep. Park Choong-kwon from the Broadcasting and Communications Commission revealed that these units were falsely labeled as domestic to meet procurement standards. The most commonly installed model, made by China’s Dahua Technology, was found in institutions such as the Korea Land and Housing Corp. (4,095 units), police agencies, and Incheon International Airport Corp.
The compromised security of these Chinese-made CCTV units, including the risk of unauthorized access and potential data leaks to foreign servers, has raised serious concerns. The South Korean military recently removed more than 1,300 units from frontline bases after discovering they were connected to Chinese servers, posing espionage risks. Additionally, leaked footage from these cameras has surfaced on Chinese adult websites, showing private scenes from South Korean homes and sensitive locations. Rep. Park emphasized the urgent need for a comprehensive investigation and swift action to prevent further security breaches.
- Related article: Vulnerable CCTVs still in operation READ MORE
2. Military secrets leaked due to lax security measures in South Korean army – South Korea’s Yonhap
Since 2021, South Korean military authorities have prosecuted 29 cases of military information leaks, according to Rep. Kang Dae-sik.
One major incident involved an army captain who shared confidential details of Korea’s Joint Command and Control System (KJCCS) and classified special operations documents with a Chinese contact in exchange for cryptocurrency. In another case, an army lieutenant colonel leaked procurement information about military equipment to a defense contractor, from whom he received money and later secured employment.
Other incidents include a navy soldier who sent training documents to a Chinese recipient via WeChat for financial gain, and an army captain who shared classified combat protocols with his girlfriend through messaging apps. These cases underscore ongoing vulnerabilities in military security protocols, leading to calls for stricter measures to prevent further breaches.
Rep. Kang stressed that leaks of military secrets could severely compromise national security, urging service members to prioritize information security and the Ministry of National Defense to strengthen preventive measures.
- Related article: South Korean military secrets allegedly leaked to North Korea, sparking security controversy READ MORE
3. U.S. Wiretap Systems Targeted in China-Linked Hack – Wall Street Journal
A Chinese government-linked cyberattack group known as Salt Typhoon infiltrated several U.S. broadband networks, including those of Verizon, AT&T, and Lumen Technologies, potentially compromising systems used for lawful surveillance by federal authorities. The breach, discovered recently, is under investigation and may have compromised sensitive information related to national security inquiries. This incident highlights a significant risk, as attackers also accessed broader internet traffic and possibly targeted providers outside the U.S.
The hackers aimed to collect intelligence and gain access to network infrastructure, raising concerns among U.S. officials. Previous Chinese cyber operations have targeted critical infrastructure, including power stations and water treatment facilities. The recent attack adds to these ongoing threats, demonstrating China’s growing cyber capabilities. Investigators are still assessing the extent of the breach, including whether Cisco routers were involved, although the company has not confirmed any connection.
Microsoft and other cybersecurity firms are actively investigating the incident, emphasizing its severe implications. Salt Typhoon has been active since 2020, primarily targeting entities in North America and Southeast Asia. This attack is part of a broader pattern, with other Chinese-linked groups, such as Volt Typhoon and Flax Typhoon, also seeking to infiltrate U.S. critical infrastructure for potential disruptive cyberattacks in the future.
4. Google’s New Android Triple Lock Update Leak—3x The Security Surprise – Forbes
Google has introduced a new set of security features for Android, called the “Triple Lock” update, aimed at enhancing data protection in case of device theft. The three features—Theft Detection Lock, Offline Device Lock, and Remote Lock—add extra layers of security. Theft Detection Lock uses AI to recognize if a device has been stolen and automatically locks the phone, preventing access. Offline Device Lock activates when a thief disconnects the phone from the internet for an extended period, while Remote Lock allows users to secure their device remotely even if they can’t access Find My Device.
The rollout of these features has begun globally, according to Android leaker Mishaal Rahman. His posts indicate that different users are receiving various combinations of these security features, suggesting a staggered release. Theft Detection Lock and Offline Device Lock are confirmed to be available on some devices, including the Xiaomi 14T Pro, while others have received the Remote Lock feature.
Google’s Android team, led by Suzanne Frey, announced in May their ongoing commitment to enhancing user security. The recent rollout of the Triple Lock features underscores Google’s focus on protecting user data and ensuring device security through innovative solutions and updates.
Editor’s note: The summaries of each article were created by ChatGPT 4o and reviewed by Dain Oh.