Cybersecurity News that Matters

Cybersecurity News that Matters

South Korean military secrets allegedly leaked to North Korea, sparking security controversy

Illustration by Areum Hwang, The Readable

by Minkyung Shin

Jul. 31, 2024
10:16 AM GMT+9

The South Korean military is embroiled in a security controversy following the alleged leak of highly sensitive military secrets, including a list of undercover intelligence operatives, to foreign countries, a situation disclosed to the public by a member of the National Assembly on July 27.

Kim Min-seok, a member of the main opposition Democratic Party, revealed that the nation’s defense intelligence had been compromised by a military officer who allegedly provided a foreign agent with confidential information. The agent, a Korean Chinese individual with suspected ties to the North Korean intelligence agency, was fed crucial data including the real names, ages, and operational countries of undercover agents working under false identities. This information was transferred to the agent several times this year. Authorities suspect that some of the leaked information has reached North Korea.

On July 30, the South Korean defense ministry announced that it had requested an arrest warrant for the military officer accused of leaking military secrets to a foreign agent. The suspect claimed that the incident was a result of external hacking of their personal computer. The Korea Defense Intelligence Command (KDIC), a government organization responsible for safeguarding military secrets where the suspect worked for, concluded the breach did not result from hacking attacks.

The suspect allegedly printed and sent confidential information to a third party, including detailed profiles of South Korean intelligence operatives active abroad. In addition to the real names and countries of operation of the operatives, the leak included other sensitive data, such as the status of all KDIC employees.

A spokesperson for the Defense Counterintelligence Command (DCC) stated that the person who received the secret files belongs to the Korean ethnic minority group known as Korean Chinese, or ‘Chosunjok.’

After the breach was confirmed by the military and human intelligence officers, commonly referred to as ‘HUMINT,’ a number of intelligence agents working abroad have been restricted from further intelligence activities, according to multiple news sources. The leaked confidential data included the identities and personal information of two types of South Korean intelligence agents: “white agents,” who operate under diplomatic cover, and “black agents,” who conceal their connections to the South Korean government. In response to the leak, agents deployed in China had their operations aborted and were hurriedly returned to South Korea.

A military court is investigating whether the leaked secrets were handed over to North Korea and if the Korean Chinese individual was involved with the Reconnaissance General Bureau, North Korea’s primary covert intelligence agency targeting South Korea.

It is believed that the secrets were leaked from the officer’s laptop. Although the individual has denied the allegations, claiming that the laptop was hacked, the military court holds the suspect responsible for the incident, asserting that storing sensitive information on a personal laptop remains a serious issue, regardless of whether the leak resulted from hacking or intentional misconduct. Moreover, a list of secret agents must not exist in an organized format due to security concerns, according to the DCC.

Although the DCC was aware of the breach as early as last month, it did not initiate an investigation into the incident until it faced intense public criticism regarding its security protocols.

The Ministry of National Defense told The Readable that the investigation is ongoing and that it cannot disclose any information beyond what has already been reported.


Related article 1: South Korean army captain accused of leaking military secrets to North Korean spies

A South Korean army captain faces accusations of allegedly passing military secrets to a North Korean spy agent. According to the indictment filed by the Ministry of National Defense on April 28, the South Korean military officer took pictures of classified military data with a smartphone and gave the images to a North Korean spy agent last February. The data contains second class confidential information related to operations conducted in both wartime and peacetime against North Korea. READ MORE

Related article 2: South Korean military loses case against antivirus company over data breaches by North Korea

South Korea’s Ministry of National Defense lost its appeal against the antivirus company Hauri in a case that involves disputes over the hacking of national defense networks by North Korean hackers in 2016. According to local news outlets, the Seoul High Court on February 16 ruled in favor of the cybersecurity firm, saying that there is no evidence to support the negligence claims against Hauri. “It is hard to believe that the hacking incidents were caused by the firm’s negligence regarding private key management, and the evidence is insufficient,” the court stated. READ MORE

Subscription

Subscribe to our newsletter for the latest insights and trends. Tailor your subscription to fit your interests:

By subscribing, you agree to our Privacy Policy. We respect your privacy and are committed to protecting your personal data. Your email address will only be used to send you the information you have requested, and you can unsubscribe at any time through the link provided in our emails.

  • Minkyung Shin

    Minkyung Shin serves as a reporting intern for The Readable, where she has channeled her passion for cybersecurity news. Her journey began at Dankook University in Korea, where she pursued studies in...

    View all posts
Editor:
Stay Ahead with The Readable's Cybersecurity Insights