(123rf) South Korea’s military said it repelled more than 9,200 hacking attempts in the first six months of the year, up about 45 percent from the same period a year earlier, with most believed to be from North Korea.
A total of 9,262 cyberattacks targeted the South Korean military from January to June in 2025, according to data provided to The Korea Herald Sunday by the office of Rep. Yu Yong-weon of the main opposition People Power Party.
Specifically, 9,193 attempts were made to breach the military’s official homepages, while the remaining 69 were cyber intrusion attempts through email hacking. No malicious code attacks were detected during the period, according to the data.
The South Korean military said “all cyberattacks were blocked and that no damage was inflicted,” Yu’s office explained.
The number of attempted breaches — including homepage intrusions, malicious code and email hacking — was tallied at 6,146 in the first half of 2021, 4,943 in 2022, 6,805 in 2023, and 6,401 in 2024.
This year’s cyber attacks targeting the South Korean military surged, up 44.7 percent compared to the corresponding period last year.
South Korea’s Cyber Operations Command informed Yu’s office that many of the attacks were attributed to North Korea.
“We cannot precisely identify the actors behind the cyber intrusion attempts, but it is presumed that the majority were conducted by North Korea in light of correlations between the countries where the routing IP addresses are located and the IPs used for intrusion attempts,” the command said without further details.
“The military is maintaining a firm cyber readiness posture by advancing its response system,” it added.
Yu underscored that the “fact that cyber intrusions targeting our military’s internet network marked an all-time high is actually a grave warning sign.”
“Only one intrusion of the military network can cause fatal damage to the command-and-control system as well as critical information assets,” Yu said.
“Therefore, the military authorities should raise awareness through maintenance of the security and control system, regular exercises simulating cyber intrusions and strengthening security education for military officers, and should come up with effective countermeasures,” he added.
Yu called for the South Korean government to actively revise the law, including the establishment of a control tower for cybersecurity under the direct supervision of President Lee Jae Myung, to respond to advanced and sophisticated cyber threats at the pan-government level.
Though fewer in number, attacks against military-adjacent companies have also increased.
The number of cyberattacks on South Korean defense industry companies reported to the military surged in 2024, according to data provided by Yu’s office.
The reported cases of cyberattacks were five in 2021, two in 2022, four in 2023 and 16 in 2024.
However, Yu’s office noted there are limitations in identifying the total number of cyber breach attempts on defense contractors, since they manage their systems independently under South Korea’s Defense Technology Security Act.
Article 13 of the act stipulates that the head of a targeted institution “shall establish and operate a defense technology security system in order to protect defense technology.”
dagyumji@heraldcorp.com