S. Korea says N. Korea staged bank cyber-attack

North Korea brought down the computer system of the Nonghyup bank North Korea was behind a cyber-attack that paralysed operations at one of South Korea's largest banks last month, prosecutors in Seoul said Tuesday. The North brought down the computer system of the National Agricultural Cooperative Federation, or Nonghyup, by hacking into an official's laptop and operating it remotely as a "zombie computer", the prosecutors' office said.
"This was unprecedented cyber-terror deliberately planned and premeditated... and involving North Korea," it said in a statement.

The attack, on the computer security official's laptop, left thousands of customers unable to access their money for three days.
The pattern used to spread malicious codes and the IP address of an overseas server used for the attack was identical to those deployed in previous cyber-attacks by the North, the prosecutors' office said.
Seoul accused Pyongyang of staging cyber-attacks on websites of major South Korean government agencies and financial institutions in March this year and in July 2009.

The 2009 attack also temporarily shut websites in the United States, but US officials did not reach a conclusion on who was responsible.
"The laptop computer of the IT security worker became in September 2010 a zombie PC operated by the North, which... later remotely staged the attack through the laptop," said the prosecutors.
The aim was to wipe out all data in Nonghyup's computer servers, they said, without explaining why the North would stage such an attack.

The South's unification ministry, which handles cross-border relations, accused North Korea of launching cyber-attacks.
"We strongly urge North Korea to immediately stop its reckless cyber-terrorism," it said in a statement.
Experts say the North maintains elite hacker units prompting the South to set up a specific military command to combat them. Intelligence officials believe some North Korean hackers are based in China.
"This was such a strong terror attack that it prompted the shutdown of servers to fend off further damage," said the statement.

The system crash that started on April 12 left Nonghyup customers unable to withdraw or transfer money, use credit cards or take out loans.
Nonghyup, which has about 5,000 branches, said earlier it suspected the problem was caused by cyber-attackers, who entered commands to destroy servers and wipe out some transaction histories.
Services were partially restored after three days but around 310,000 customers filed complaints.
The attack also temporarily deleted records of some of Nonghyup's 5.4 million credit card customers, leaving the firm unable to bill customers or settle payments to retailers.