52,000 Hacking Attempts Target Korea Post in 5 Years... The Most Attacked Agency Under the Ministry of Science and ICT

The Korea Post has been identified as the most frequent target of cyberattacks among agencies under the Ministry of Science and ICT. Due to the nature of handling vast amounts of personal information related to finance and logistics, there are growing calls for both stronger security measures and expanded enrollment in liability insurance to compensate for damages in the event of a breach.

According to data submitted by the office of Kim Jangkyum, a member of the National Assembly’s Science, ICT, Broadcasting, and Communications Committee, on September 28, a total of 52,656 cyber intrusion attempts were detected at the Korea Post and its affiliated organizations from 2020 to the end of August this year. This figure accounts for 93.9% of the 56,076 cases reported across all 64 agencies and affiliates under the Ministry of Science and ICT. This is an overwhelming number, especially when compared to the 391 cases recorded by the Korea Internet & Security Agency (KISA), a specialized hacking response institution, during the same period.

After concluding the Labor-Management Win-Win One Heart Resolution Rally held at Gwanghwamun Post Office in Seoul in 2018, postal workers are riding ultra-compact four-wheel electric vehicles and delivery trucks in a street parade. Photo by Asia Economy Database

View original image

By organization, the Korea Post recorded the highest number with 34,757 cases, followed by the Post Office Facilities Management Corporation with 8,078 cases, the Post Office Logistics Support Center with 5,408 cases, the Post Office Financial Development Institute with 1,454 cases, and the Korea Postal Business Promotion Agency with 2,959 cases. In terms of attack types, attempts at data destruction or leakage were the most frequent, totaling over 42,000 cases, while simple intrusion attempts amounted to around 10,000 cases.

Of course, these figures represent detected attempts and do not necessarily mean that information leaks or service disruptions actually occurred. However, the concentration of intrusion attempts has led the National Assembly to conclude that, should a hacking incident materialize, the potential damage could be significant. In particular, the Korea Post and its affiliates are believed to be targeted because they hold large volumes of sensitive data, including personal, financial, and logistics information.

The problem is that there are insufficient safeguards to provide compensation in the event of a breach. Personal information liability insurance is a system that mandates companies or institutions to enroll in insurance or set aside reserves so they can compensate consumers if personal data is leaked. While public institutions are not generally required to enroll, exceptions are made for those handling sensitive information with annual revenues of 150 billion won or more, or those managing the personal data of more than one million people. Accordingly, the Korea Post is insured, but among its affiliates, only the Korea Postal Business Promotion Agency has voluntarily enrolled. The Post Office Facilities Management Corporation, the Post Office Logistics Support Center, and the Post Office Financial Development Institute are not insured.

In contrast, some agencies under the Ministry of Science and ICT have voluntarily enrolled in the insurance, even though they are not required to do so. Seven institutions, including the Korea Data Agency and the Korea Institute of Civil Engineering and Building Technology, have voluntarily enrolled and are currently operating under the insurance.

Kim Jangkyum, member of the People Power Party. Photo by Yonhap News

View original image

Kim Jangkyum stated, "Cyber intrusion attempts against government agencies may not simply be for financial gain, but could also be a prelude to cyber warfare between nations." He continued, "Government agencies that handle vast amounts of personal information must strengthen their security investments and management systems to prevent harm to the public." He added, "Institutions that are frequent targets of intrusion attempts should secure compensation measures for victims, even if it means voluntarily enrolling in insurance."

© The Asia Business Daily(www.asiae.co.kr). All rights reserved.