South Korea

더 똑똑해진 북한발 해킹…스마트폰·PC·카톡 장악해 원격 조종

Digital Daily | Local Language | News | Nov. 12, 2025 | North Korea

A North Korean-backed hacking group has been found to remotely control Android smartphones and PCs, deleting key personal data and hijacking KakaoTalk accounts to distribute malicious files to users' contacts. The attack involved mass distribution of malware disguised as a "stress relief program" via KakaoTalk messenger, linked to the "Konni APT" campaign, associated with North Korean groups Kimsuky and APT37. In several cases in South Korea, victims' Google Android devices were remotely reset, resulting in data loss.

The attackers infiltrated devices, remained dormant, and stole credentials for Google and domestic IT services. They exploited Google's "My Device Hub," a service designed to locate and protect lost Android devices, to gain remote control, track devices, and perform resets. This is reportedly the first documented instance of this service being abused in an APT campaign. Additionally, hackers used PC webcams to verify if victims were away, potentially capturing both video and audio without user awareness, increasing privacy and security risks.

Genians Security Center (GSC) recommended users strengthen account security and called for enhanced security policies around the "My Device Hub" service. They also advised that messenger platforms improve file verification and implement warning notices to prevent users from downloading and executing malicious files.

개보위, SKT에 1347억원 과징금 의결서 송달…행정소송 불가피

ET News | Local Language | News | Nov. 12, 2025 | Regulatory Enforcement Actions

The Personal Information Protection Commission (PIPC) has imposed an administrative fine of 134.7 billion won and an additional penalty of 9.6 million won on SK Telecom for failing to implement adequate safety measures and for delayed notification of a personal information leak, including USIM information. This fine is the largest since the PIPC’s establishment. The decision also includes corrective orders obligating SK Telecom to restructure its governance system to empower the Chief Privacy Officer and to implement measures preventing future incidents.

The decision document was delivered to SK Telecom in late October, confirming the sanctions announced in August. SK Telecom is required to pay the fine and penalty within 30 days but has already accounted for the fine in its third-quarter financials. The telecommunications industry expects SK Telecom to file an administrative lawsuit challenging the fine, which must be done within 90 days of receipt of the decision. SK Telecom has been working with law firm Gwangjang but may seek additional legal representation if the lawsuit proceeds.

Industry observers anticipate SK Telecom will reject the PIPC’s dispute mediation offer that would require paying 300,000 won each to nearly 4,000 applicants affected by the leak, which could amount to approximately 1 billion won. However, if compensation claims are expanded to all 23 million subscribers, potential costs could escalate to about 7 trillion won. The escalating legal dispute between SK Telecom and the PIPC is expected to continue.

Joongang Ilbo | English | News | Nov. 12, 2025 | UndeterminedMergers & Acquisitions

The South Korean government is redistributing 10 flight routes following the Korean Air-Asiana Airlines merger, which has attracted strong interest from low-cost carriers (LCCs) seeking new slot opportunities. The routes include six international flights—Incheon to Seattle, Honolulu, Guam, Jakarta, London, and Busan to Guam—and four domestic ones between Gimpo, Jeju, and Gwangju airports. Applications for these routes closed on November 10, 2025.

The Korea Fair Trade Commission approved the merger on the condition that Korean Air and Asiana transfer slots and traffic rights on 34 routes to prevent monopolies or duopolies. Redistribution of the remaining routes is planned in phases beginning in the first half of 2026. Southeast Asian routes, especially Incheon to Jakarta, are seeing the most interest from LCCs, as only a few are ready to operate longer haul flights to the US or UK, while short-haul markets like Japan are already saturated.

The US and UK competition authorities have designated Air Premia and Virgin Atlantic as replacement carriers for the Incheon-Honolulu and Incheon-London routes, respectively. Among domestic LCCs, Jeju Air and Eastar Jet are likely candidates for the Jakarta route, supported by business demand linked to major companies near Jakarta. Airlines must secure traffic rights under bilateral agreements to operate these international routes.

The government aims to finish the allocation process by year-end 2025. The first evaluation will assess applicants for independence from Korean Air Group affiliates and potential competition issues, with results expected in late November. The Ministry of Land, Infrastructure and Transport will then review safety, passenger convenience, operational plans, viability, and regional airport contributions, announcing final selections by the end of December.