“Weekend Briefing” is a weekly newsletter sent to subscribers of The Readable every Friday.
Amid rising geopolitical tensions, cybercrime crackdowns and surging investor appetite for security technologies, recent developments highlight how governments and businesses worldwide are confronting digital threats. From U.S. sanctions targeting North Korea’s covert IT operations, to record crypto seizures by American agents, to Greece’s first crypto asset freeze tied to a massive hack, authorities are sharpening their tools against cyber criminals. Meanwhile, South Korean firm Autocrypt has captured market attention with a blockbuster IPO, reflecting growing confidence in cybersecurity as cars, drones and devices become ever more connected. This briefing also includes the four stories covered in this week’s reports.
This is Dain Oh reporting from South Korea, and here is your weekend briefing.
1. US sanctions North Korean hacker for secret tech worker scheme – Treasury Department
The U.S. Treasury on Tuesday sanctioned North Korean hacker Song Kum Hyok for running a network that used fake identities to help North Korean IT workers land jobs at foreign tech and crypto firms, which funneled money to Pyongyang. Some workers also planted malware inside company systems, officials said.
The Treasury also sanctioned Russian national Gayk Asatryan and four firms for employing North Korean tech workers in Russia, exposing deals to send dozens of North Koreans abroad. Officials said these operations help fund North Korea’s weapons programs despite international sanctions.
All U.S. assets tied to those designated entities are now frozen, and Americans are barred from doing business with them. Deputy Treasury Secretary Michael Faulkender said the move aims to disrupt North Korea’s cyber thefts and missile funding.
2. Greece cracks first crypto case, tying funds to North Korea-linked theft – Chainalysis
Greek authorities have carried out the nation’s first-ever cryptocurrency asset freezing, recovering funds linked to one of the world’s largest crypto heists, officials said. The Hellenic Anti-Money Laundering Authority used blockchain analysis tools to trace digital funds tied to the $1.5 billion theft from crypto exchange Bybit in February, widely blamed on North Korea’s Lazarus Group.
Investigators began unraveling the complex laundering scheme after spotting a suspicious transaction months later. Armed with Chainalysis Reactor, a specialized blockchain tracing tool obtained in 2023 through local partner Performance Technologies, analysts mapped the digital trail and confirmed links between the suspect’s wallet and the Bybit hack. Authorities quickly froze the wallet, moving the case into legal proceedings.
Greece’s finance minister hailed the operation as proof that advanced technology and cross-sector partnerships can pierce crypto’s veil of anonymity and combat financial crime. Experts say the case shows how blockchain’s transparent ledger can help law enforcement transform digital clues into real-world arrests and asset seizures.
3. South Korea fines Black Yak over data leak exposing 340,000 users – Chosun Biz
South Korean outdoor gear brand Black Yak has been fined nearly 1.39 billion won ($1.01 million) after a cyberattack exposed personal data of more than 340,000 customers, the nation’s privacy watchdog said Thursday. Hackers stole administrator credentials in an SQL injection attack on Black Yak’s website between March 1 and 4, allowing them to access names, genders, birth dates, phone numbers and partial addresses of 342,253 users.
An SQL injection attack involves inserting malicious code into website fields like search bars or login forms, tricking systems into revealing data or bypassing security. Investigators found Black Yak failed to address its website’s vulnerability since its October 2021 launch. The company had allowed external logins to its admin page with only IDs and passwords, a risky setup, especially amid the rise of remote work.
The Personal Information Protection Commission also fined Korea Topic Education Center, an online learning firm, 23 million won ($16,700) and imposed an additional penalty of 2.7 million won ($2,000) after a similar attack leaked data of about 84,085 users. The firm delayed notifying users of the breach for more than 72 hours without valid reason, authorities said, underscoring the growing need for stronger security and prompt disclosure in the digital era.
4. Cybersecurity firm Autocrypt surges in IPO amid global drive for safer cars – The Electronic Times
South Korean automotive cybersecurity company Autocrypt has drawn explosive investor interest ahead of its stock market debut, fueled by the global push for safer connected vehicles and rising cybersecurity standards. The company confirmed its IPO price at 22,000 won ($16.00) per share, the top of its target range, after more than 2,400 institutional investors joined the book-building process, with nearly all bidding at or above the ceiling price. Retail investors then piled in as well, placing over 204,000 subscriptions for shares, pushing the public offering competition ratio to a staggering 1,406 to 1 and amassing around 5.4 trillion won ($3.9 billion) in deposits.
Founded on proprietary technology, Autocrypt specializes in cybersecurity software that protects vehicles from hacking and digital threats. Its solutions already serve 21 global car manufacturers and are designed to secure vehicle networks, data privacy and communication between cars and external systems — crucial in an era when cars increasingly operate as connected computers on wheels. Beyond cars, Autocrypt is preparing cybersecurity tools for emerging mobility sectors such as urban air mobility, robotics and heavy machinery. The company is also positioning itself to help clients comply with new regulations like the European Union’s Cyber Resilience Act, which mandates cybersecurity measures for millions of connected devices across Europe.
Executives and market analysts attribute the IPO frenzy not only to the booming demand for automotive security, but also to Autocrypt’s unique business model that relies on high-margin software royalties from automakers rather than direct consumer sales. CEO Lee Seok-woo said the company aims to evolve into a global infrastructure provider, securing all forms of mobility. He also pledged to deliver tangible results following the public listing, which is set for July 15 on South Korea’s KOSDAQ market.
5. US arrests Chinese hacker linked to massive cyberattacks and COVID-19 espionage – The Readable
A Chinese hacker accused of helping to steal COVID-19 research and launch a sweeping global cyberattack has been arrested in Italy and faces extradition to the United States, the Justice Department said Monday.
Xu Zewei, 33, was taken into custody July 3 in Milan at the request of U.S. authorities. He and his alleged co-conspirator, Zhang Yu, 44, remain charged in a nine-count indictment unsealed in federal court in Houston. Zhang is still at large.
Prosecutors say Xu worked under orders from China’s Ministry of State Security, the country’s intelligence service, and carried out hacks through his company, Shanghai Powerock Network Co. Ltd. He is accused of stealing sensitive data from U.S. universities and researchers developing COVID-19 vaccines and treatments at the height of the pandemic. READ MORE
6. Omar Khawaja, CISO at Databricks: “Cybersecurity is now a big data problem” – The Readable
As cyber threats grow in sophistication and scale, Databricks is redefining how modern enterprises should think about security — both in the cloud and across artificial intelligence-powered systems.
Omar Khawaja, Chief Information Security Officer (CISO) at Databricks, believes the future of cybersecurity lies not in chasing individual incidents, but in managing patterns, risks and data at scale. “We’re a cloud-native, cloud-first organization,” Khawaja explained. “It’s not like we have our own data centers or servers sitting underneath the desk.”
That architectural choice — built entirely on hyperscalers like AWS, Azure, and Google Cloud Platform — eliminates many physical security concerns. But when it comes to data protection and cyber threats, the real challenge is the ever-evolving nature of both the product and the threat landscape. READ MORE
7. Google Cloud debuts new AI data residency service in South Korea – The Readable
Google Cloud has introduced a new data residency service in South Korea that allows businesses to process artificial intelligence workloads entirely within the country, addressing rising demand for stronger data sovereignty and regulatory compliance among local enterprises.
While Google Cloud has long offered customers control over where their data is stored, the new service goes a step further by ensuring that the machine learning processing takes place directly on local servers. This capability is particularly important for industries subject to strict regulations about keeping certain AI activities within national borders. As a result, South Korean businesses can now use advanced models like Gemini 2.5 Flash while maintaining compliance with local data laws. READ MORE
8. Korea University launches executive program on AI security – The Readable
Seoul, South Korea — Korea University’s Graduate School of Information Security, led by Dean Jung Ikrae, announced it will launch the first Korean University Security Advanced Course (KUSAC), an executive education program focused on practical training in artificial intelligence security, on Sept. 3.
The program is designed to develop high-level technical and policy experts capable of integrating artificial intelligence, cybersecurity and personal data protection. It targets AI executives, chief information security officers (CISOs), chief privacy officers (CPOs) and mid- to senior-level managers and practitioners from government agencies, public institutions and private enterprises. READ MORE
Editor’s note: Each item in this briefing was initially summarized or translated by ChatGPT-4o based on the author’s specific instructions, which included news judgment, fact-checking, and thorough editing before publication.
