Cyber Security Is Vital for National Defense

National Intelligence Service chief Won Sei-hoon told lawmakers during a National Assembly audit that the IP address used to launch the crippling distributed denial-of-service (DDoS) attacks on the websites of Cheong Wa Dae, the Defense Ministry and other key government agencies and private businesses in July was traced to North Korea's postal service. A probe into the route of the attack revealed a link in China that the North Koreans were borrowing.

Suspicions that North Korea or a group loyal to it was behind the cyber attacks have been raised before. Yet South Korean intelligence officials kept the source of the attacks under wraps even though they confirmed it, revealing it only during the National Assembly audit, apparently because of China's involvement and the possibility of exposing the extent of the South's intelligence gathering capabilities. That was a mistake. They should have informed the public at least of parts of their discovery to raise awareness of the national security threat posed by cyber terrorism.

The government last month announced a national contingency plan pledging increased cooperation between government and private sector experts in cyber security and boosting investment and manpower to combat cyber terrorism. Whether that contingency plan is foolproof remains to be seen.

During the audit on Oct. 22, portions of the information and communication networks at 109 agencies under the supervision of 10 government ministries were cited as being completely unprepared for a fresh DDoS attack. Incheon International Airport Corporation, the National Geographic Information Institute, which manages GPS data, the Korea Exchange, which handles W5 trillion (US$1=W1,185) in funds each day, and several brokerages failed to bring in the proper equipment or had any plan to ward off another DDoS attack. And on Oct. 17, hackers presumed to be part of a North Korean cyber warfare unit, stole a password from the computer of a high-ranking South Korean military officer and used it to obtain classified information from the National Institute of Environmental Research, including the names of around 700 companies or state-run entities that manufacture toxic chemicals and some 1,350 types of such chemicals.

Korea leads the world in Internet connectivity, but that environment also provides a fertile hunting ground for cyber terrorists. Out of 35 million web users in South Korea, 70 percent do not know whether there are vaccine programs to prevent a DDoS or hacking attack. Cyber terrorists and hackers are using the computers of such ignorant people to launch their attacks.

The government must hurry up and come up with measures to deal with the cyber threat by making it mandatory to install vaccines or to disseminate such programs free of charge. During the attacks in July, a private cyber security company passed out vaccines for free but they still caused losses between W36 billion and W54 billion.

A more sophisticated and organized attack could cause irreparable damage. Cyber security is just as important for the country's defense as protecting its land and sea borders.