Editor's NoteSome sentences encapsulate the entire content of a book, while others instantly resonate with readers and create a connection to the book. Here, we introduce such meaningful sentences excerpted from books.
This is an in-depth report that diagnoses the recent series of major hacking incidents not as mere misfortune for individuals or companies, but as disasters resulting from the structure of Korean society. Telecommunications companies, large corporations, and even the financial sector have been indiscriminately targeted, yet the truth and accountability have vanished. The authors point out that the incidents made public represent only a fraction of the total damage. Through hundreds of interviews with stakeholders and extensive data analysis, they track the hidden hacking ecosystem and international crime networks beneath the surface. The book dissects the security gaps created by convenience, hierarchical culture, and incompetent policies, and provides concrete alternatives to explain why we keep losing this war and what must be changed.
![[A Sip of Books] The War Against Cyber Terror... "Korea Has Been Hacked"](https://cphoto.asiae.co.kr/listimglink/1/2025123109345974965_1767141299.jpg)
However, the companies whose hacking incidents are exposed to the public are just the tip of the iceberg. Far more companies choose to conceal such incidents, to an extent that cannot even be compared. In manufacturing centered around factories or in service industries dealing only with a select group of corporate clients, it is easy to hide incidents if they so desire. As long as they keep their employees silent, it is difficult for outsiders to detect a hacking incident. For this reason, most companies do not even consider reporting; instead, they secretly seek out teams that will negotiate with hackers on their behalf. - From "Chapter 1: Is Not Reporting the Norm?"
Observing this series of events, I came to believe that Korea's top-down culture is nothing but a poison for cybersecurity, never a benefit. If a superior gives a negligent order, even a clueless junior employee can quickly drag the company into a quagmire. Anyone, regardless of rank, can fall victim to the ever-evolving traps of hacking. That is why this culture, which prevents subordinates from challenging their superiors, is all the more dangerous. 'Mistakes' do not discriminate by position. - From "Chapter 3: New Employees Are Not to Blame"
What was even more bitter was that, despite being doubly exploited, the victimized company only filed a lawsuit to punish the 'crocodile bird' and seek financial compensation, but there was not a single trace of a belated report to the government admitting, "I was hit by a ransomware attack." The moment they report, a scarlet letter of "an incompetent company that failed at security" is branded on them, and they instinctively realize they will bear harsher social and legal responsibility than the ransom extorted by the hackers. - From "Chapter 7: Crocodile and Crocodile Bird"
This series of hacking incidents raises questions for us. What role should the state play in cyberspace? What does it mean to protect companies and citizens? This is not about listing principles that fail to address real issues and solutions, like the guidelines of KISA, or handing out immediate compensation like a penalty payment. It is about ensuring that, when a company is hacked, the first call they make is not to a shadowy negotiator, but to the state without hesitation. It is about thoroughly establishing systems and environments to reduce hacking threats. - From "Chapter 15: Why the Government Clung to Yes24"
Nevertheless, what if our government agencies remain embroiled in turf wars and scattered, failing to respond properly to hacking? What if they do not show the will and effort to catch the real culprits behind the ransomware attacks on companies? The outcome is as clear as day. Among international hacking organizations, Korea is already regarded as a "five-star value-for-money destination," and hackers will keep coming back. Therefore, even if it is just one case, Korea must create a successful experience of delivering a decisive blow to hackers, just like the FBI. The success referred to here is not simply arresting a domestic accomplice, as in the KT incident. It must be a victory on the scale of a war: tracking down adversaries beyond national borders, neutralizing them, and recovering the bitcoins they have extorted. - From "Chapter 18: KISA Crawls, Hackers Run, FBI Flies"
Even as 2025 draws to a close, reports of hacking incidents continue unabated. Through this book, we have sharply exposed the government's incompetence and complacency. However, this is not criticism for its own sake. It is a call for the government to step down from the comfortable chair of a 'judge' with folded arms. Instead, it is a demand to become a 'helper' who brings hacked companies into the open and works alongside them. Ultimately, the power to protect our lives from these invisible threats comes from the truth and solidarity shared by our entire society. - From "Epilogue"
Korea Has Been Hacked | Written by Sim Nayoung, Jeon Youngjoo, Park Yujin | Sideway | 284 pages | 18,000 won
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
