It has been determined that the source of the cyber-attacks on South Korea’s media outlets and banks indeed originated from China. Three major television networks were essentially shut down on Wednesday and many ATMS and online banking services were inaccessible to major banks and their customers.
South Korea had a real mess on their hands this past Wednesday when three major television networks along with some major banking institutions were shut down by a vicious malware attack that occurred at 2PM Seoul time.
Security experts discovered the hacker’s malware program but not until after the attack occurred. No group has claimed responsibility for the attack and it is not known at this time if the hacker was working with a collective or alone.
This attack comes just one week after North Korea had a similar break into their highly exclusive Internet network that knocked them offline for approximately 36 hours.
North Korea immediately blamed South Korea for their Internet outage that occurred a week ago. The North also called it an "intensive and persistent virus attack" by the U.S. Internet security experts in the U.S. and Europe concluded that the attacks on the North Korean network more than likely originated out of China.
While the South Korean government made no publicly noted suspicions about who committed attacks, many privately said that the attacks might be North Korea in origin, due to the recent tensions between the two entities.
As chance would have it, an analysis team got lucky and determined the source to have originated out of Mainland China. The program left behind a calling card in the banks servers giving up data that lead to its origin.
The South Korean financial institutions that were hit included Shinhan Bank, Jeju, and Nonghyup banks. The malware greatly hindered all of the bank's Internet access usability, which included mobile banking apps and ATM access.