Seoul, Oct 17 The South Korean interior ministry said Friday it has strengthened security measures for online government systems after detecting signs of the government's administration platform being hacked.
The move came two months after Phrack, an online cybersecurity publication, reported in August that South Korean government branches and companies appeared to have been targeted by hackers.
"In mid-July, (we) confirmed signs through the National Intelligence Service (NIS) that an external internet PC accessed the Onnara system via the Government-Virtual Private Network (G-VPN)," the ministry said, Yonhap News Agency reported.
The Onnara system is the government's online work platform, which manages official documents and handles internal workflow.
The ministry said it strengthened security measures in response by requiring officials to go through extra authentication procedures when connecting to G-VPN for remote work.
The ministry said government public key infrastructure (GPKI) certificates of 650 officials were also presumed to have been targeted. GPKI certificates are used by public officials for authentication.
Most of the certificates had been expired, but three that remained valid were scrapped as of Aug. 13.
Officials suspect certificate information was leaked due to user carelessness.
The ministry said it plans to replace the GPKI-based authentication system with a biometric system when public officials access the government's internal administrative system.
Phrack earlier reported that the North Korean hacking group Kimsuky was behind the attack.
Signs of hacking were reportedly detected in the interior and foreign ministries, the military, the prosecution, as well as major companies, including Kakao Corp., Naver Corp., KT Corp. and LG Uplus Corp.
On October 5, a data showed that the number of hacking attempts against the Constitutional Court has been gradually rising since 2017, raising concerns over cybersecurity in public organisations.
Citing data submitted by the Constitutional Court, Rep. Choo Mi-ae of the ruling Democratic Party said there have been around 1.16 million cases of attempted cyberattacks against the court since 2017.
The attempts, all of which were detected and blocked, came to 85,000 in 2017 but surged to 187,000 in 2024, the report showed.
The figure stood at around 80,000 during the January-August period of 2025.
"Cyber threats continue to grow. We need to bolster our alertness and enhance security readiness," Choo said.
Disclaimer: This post has been auto-published from an agency feed without any modifications to the text and has not been reviewed by an editor