iTnews
  • Home
  • News
  • Technology
  • Security

Authorities close in on South Korea hackers

By Shaun Nichols
Jul 14 2009 12:45PM
Follow google news

Researchers uncover command server in UK.

Security experts have reportedly uncovered the command server for the malware botnet believed to be responsible for recent attacks on US and South Korea government websites.

Researchers from Vietnamese firm Bkis Security said the company was working with the Korean Computer Emergency Response Team on an effort to track down the source of the attacks.

The company said that it now believes the command server controlling the attacks is hosted in the United Kingdom.

According to Bkis, the nearly 177,000 infected PCs that comprise the botnet are programmed to randomly dial one of eight attack servers which then relay targets. The eight servers each receive their instructions from a central attack server located in the UK.

While the news does not necessarily mean that the individuals behind the attacks are physically located in the UK, researchers say that locating the attack server will make locating the masterminds of the attacks easier.

"Having located the attacking source in UK, we believe that it is completely possible to find out the hacker," the company said in its report.

"This of course depends on the US and South Korean governments."

The company also said that it had gained control of two of the eight attack servers.

The news could put investigators closer to shutting down the denial of service attacks, which have preyed primarily on sites run by the United States and South Korean governments.

While the motive for the attacks is not immediately known, the hackers behind the operation are believed to be supporters of North Korea.

Perhaps of more concern than the motives behind the attacks, however, was the apparent ease with which they were launched.

Imperva chief technology officer Amichai Shulman noted that the attacks show how cyber warfare can be executed on a much smaller budget than many would like to believe.

"This attack is relatively inexpensive to execute, no more than US$50,000, making it doable not just by any government, but also by any Tony Soprano," he said.

Authorities close in on South Korea hackers

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
attackattacksbehindcompanysecurityserversouthtechnology

Related Articles

  • Marathon OAIC investigation finds Optus breached 51,000 customers' privacy Marathon OAIC investigation finds Optus breached 51,000 customers' privacy
  • US gov shortens cyber fix window to three days US gov shortens cyber fix window to three days
  • Anthropic releases Mythos-class model for public use Anthropic releases Mythos-class model for public use
  • Apple bumps up security in fresh operating system releases Apple bumps up security in fresh operating system releases
Join our WhatsApp Channel

Partner Content

Scalable AI solutions: secure delivery
Scalable AI solutions: secure delivery
Onel Consulting Strengthens Its White-Glove Services With Strategic COO Appointment
Promoted Content Onel Consulting Strengthens Its White-Glove Services With Strategic COO Appointment
The hidden economics of AI: Why token usage matters more than you think
Partner Content The hidden economics of AI: Why token usage matters more than you think
CommBank creates opportunities for technologists to upskill with frontier AI companies
Partner Content CommBank creates opportunities for technologists to upskill with frontier AI companies

Sponsored Whitepapers

When cyber risk has no clear owner: A practical guide for senior Australian business leaders
When cyber risk has no clear owner: A practical guide for senior Australian business leaders
Agile in the AI Era: why projects still fail
Agile in the AI Era: why projects still fail
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
High-volume data sources for AI-driven security analytics
High-volume data sources for AI-driven security analytics
How healthcare organisations can get more value from cloud
How healthcare organisations can get more value from cloud

Events

  • iTnews State of Security Breakfast iTnews State of Security Breakfast
  • iTnews State of Data & AI Breakfast iTnews State of Data & AI Breakfast
  • Forrester's AI Forum Sydney Forrester's AI Forum Sydney
  • The 2026 iAwards The 2026 iAwards
  • Integrate 2026 Integrate 2026
Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Anthropic opens Claude Mythos Preview AI program to Australia

Anthropic opens Claude Mythos Preview AI program to Australia
Defence says Palantir is "sandboxed" in its environment

Defence says Palantir is "sandboxed" in its environment
Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases
Researchers build self-replicating AI worm with BYO LLM

Researchers build self-replicating AI worm with BYO LLM
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.