In the Third Quarter Threat Report (Q3-2011) released by Trend Micro, data breach by SK Communications in South Korea affecting at least 35 Million users in July 2011 holds much significance and prime importance.
The incident took a toll of the companies including Cyworld and NATE, subsidiaries of SK Communications, one of the most popular social networking, telecommunications, and instant-messaging service providers. Private information associated with e-mail addresses, user names, and contact details were stolen during this incident. However, following the breach, SK Communications immediately sent out an advisory.
After a week of the data breach, analysts at Trend Micro explored a malware, BKDR_SOGU.A, which is anticipated to be the prime reason for the occurrence of the incident. Analysis further revealed that backdoor is enabled with the capability to enter databases that are stored in the infected systems for collecting data. The malware also enabled remote malicious users with the capability of sending commands to the infected systems, thus breaching their security.
...
