U.S. Army warns of database breaches in South Korea
A hack of a hiring system may have exposed personal information of Korean employees and job applicants
IDG News Service - The U.S. Army warned Thursday that databases holding information on 16,000 South Korean civilian employees of the U.S. military and applicants for base jobs may have been compromised.
The military became aware on May 28 that the Korean National Recruitment System may have been breached, according to a letter addressed to Korean employees signed by Gen. Curtis M. Scaparrotti, head of U.S. Forces Korea (USFK).
Information that may have been disclosed includes peoples' names, contact information, education, work experience and Korean Identification Number, which is South Korea's national government ID issued to citizens.
That system may have been accessed through a server run by the Civilian Human Resources Agency Far East, according to a report in Pacific Stars and Stripes.
The agency manages the hiring of civilians to work for the U.S. military in Japan and South Korea.
The affected system was taken offline, and an investigation is underway, Scaparrotti wrote. South Korean government officials have been notified.
"USFK takes this potential compromise very seriously and is reviewing policies and practices with a view of determining what must be changed," Scaparrotti wrote.
Send news tips and comments to firstname.lastname@example.org. Follow me on Twitter: @jeremy_kirk
- Using Cyber Insurance and Cybercrime Data to Limit Your Business Risk This paper examines the challenges of understanding cyber risks, the importance of having the right cyber risk intelligence, and how to use this...
- 5 Tips to Secure Small Business Backdoors in the Enterprise Supply Chain This paper examines the insecurity of the small businesses in the supply chain and offers tips to close those backdoors into the enterprise.
- Comprehensive Advanced Threat Defense The hot topic in the information security industry these days is "Advanced Threat Defense" (ATD). This paper describes a comprehensive, network-based approach to...
- Advanced Threat Defense: A Comprehensive Approach In this interview, Peter George, president, General Dynamics Fidelis Cybersecurity Solutions, explains why we need more than anti-malware, and what constitutes a comprehensive...
- Live Webcast Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- NSS Labs & Cisco Present: Evaluating Leading Breach Detection Systems Today's constantly evolving advanced malware and APTs can evade point-in-time defenses to penetrate networks. Security professionals must evolve their strategy in lockstep to... All Cybercrime and Hacking White Papers | Webcasts