South Korea is world-famous for its blazing-fast internet, near-universal broadband coverage, and as a leader in digital innovation, hosting global tech brands like Hyundai, LG, and Samsung. But this very success has made the country a prime target for hackers and exposed how fragile its cybersecurity defenses remain.
The country is reeling from a string of high-profile hacks, affecting credit card companies, telecoms, tech startups, and government agencies, impacting vast swathes of the South Korean population. In each case, ministries and regulators appeared to scramble in parallel, sometimes deferring to one another rather than moving in unison.
Critics argue that South Korea’s cyber defenses are hindered by a fragmented system of government ministries and agencies, often resulting in slow and uncoordinated responses, per local media reports.
With no clear government agency acting as “first responder” following a cyberattack, the country’s cyber defenses are struggling to keep pace with its digital ambitions.
“The government’s approach to cybersecurity remains largely reactive, treating it as a crisis management issue rather than as critical national infrastructure,” Brian Pak, the chief executive of Seoul-based cybersecurity firm Theori, told TechCrunch.
Pak, who also serves as an advisor to SK Telecom’s parent company’s special committee on cybersecurity innovations, told TechCrunch that because government agencies tasked with cybersecurity work in silos, developing digital defenses and training skilled workers often get overlooked.
The country is also facing a severe shortage of skilled cybersecurity experts.
“[That’s] mainly because the current approach has held back workforce development. This lack of talent creates a vicious cycle. Without enough expertise, it’s impossible to build and maintain the proactive defenses needed to stay ahead of threats,” Pak continued.
Political deadlock has fostered a habit of seeking quick, obvious “quick fixes” after each crisis, said Pak, all the while the more challenging, long-term work of building digital resilience continues to be sidelined.
This year alone, there has been a major cybersecurity incident in South Korea almost every month, further mounting concerns over the resilience of South Korea’s digital infrastructure.
In light of the recent surge in hacking incidents, the South Korean Presidential Office’s National Security is stepping in to tighten defenses, pushing for a cross-ministerial effort that brings multiple agencies together in a coordinated, whole-of-government response.
In September 2025, the National Security Office announced that it would implement “comprehensive” cyber measures through an interagency plan, led by the South Korean president’s office. Regulators also signaled a legal change giving the government power to launch probes at the first sign of hacking — even if companies haven’t filed a report. Both steps aim to address the lack of a first responder that has long hindered South Korea’s cyber defenses.
But South Korea’s fragmented system leaves accountability weak, placing all authority in a presidential “control tower” could risk “politicization” and overreach, according to Pak.
A better path may be balance: a central body to set strategy and coordinate crises, paired with independent oversight to keep power in check. In a hybrid model, expert agencies like KISA would still handle the technical work — just with more straightforward rules and accountability, Pak told TechCrunch.
When reached for comment, a spokesperson for the South Korea’s Ministry of Science in ICT said the ministry, with KISA and other relevant agencies, is “committed to addressing increasingly sophisticated and advanced cyber threats.”
“We continue to work diligently to minimize potential harm to Korean businesses and the general public,” the spokesperson added.
This article was originally published on September 30.
Topics
© 2025 TechCrunch Media LLC.
Quiz 1:
Who is Brian Pak?
A. The CEO of a cybersecurity firm based in Seoul
B. An advisor to SK Telecom’s parent company’s special committee on cybersecurity innovations
C. The president of South Korea
D. A spokesperson for the South Korea’s Ministry of Science and ICT
Quiz 2:
According to Brian Pak, what is one of the main reasons for the shortage of skilled cybersecurity experts in South Korea?
A. Lack of resources and funding
B. Political deadlock hindering workforce development
C. Fragmented system of government ministries and agencies
D. Inadequate digital infrastructure
Quiz 3:
In September 2025, what measure did the South Korean Presidential Office's National Security take to strengthen cyber defenses?
A. Developing a comprehensive interagency plan led by the South Korean president’s office
B. Delegating authority for cybersecurity to a single government agency
C. Imposing strict regulations on tech companies without filing reports
D. Establishing a central body to set strategy and coordinate crises, with independent oversight
The country is reeling from a string of high-profile hacks, affecting credit card companies, telecoms, tech startups, and government agencies, impacting vast swathes of the South Korean population. In each case, ministries and regulators appeared to scramble in parallel, sometimes deferring to one another rather than moving in unison.
Critics argue that South Korea’s cyber defenses are hindered by a fragmented system of government ministries and agencies, often resulting in slow and uncoordinated responses, per local media reports.
With no clear government agency acting as “first responder” following a cyberattack, the country’s cyber defenses are struggling to keep pace with its digital ambitions.
“The government’s approach to cybersecurity remains largely reactive, treating it as a crisis management issue rather than as critical national infrastructure,” Brian Pak, the chief executive of Seoul-based cybersecurity firm Theori, told TechCrunch.
Pak, who also serves as an advisor to SK Telecom’s parent company’s special committee on cybersecurity innovations, told TechCrunch that because government agencies tasked with cybersecurity work in silos, developing digital defenses and training skilled workers often get overlooked.
The country is also facing a severe shortage of skilled cybersecurity experts.
“[That’s] mainly because the current approach has held back workforce development. This lack of talent creates a vicious cycle. Without enough expertise, it’s impossible to build and maintain the proactive defenses needed to stay ahead of threats,” Pak continued.
Political deadlock has fostered a habit of seeking quick, obvious “quick fixes” after each crisis, said Pak, all the while the more challenging, long-term work of building digital resilience continues to be sidelined.
This year alone, there has been a major cybersecurity incident in South Korea almost every month, further mounting concerns over the resilience of South Korea’s digital infrastructure.
In light of the recent surge in hacking incidents, the South Korean Presidential Office’s National Security is stepping in to tighten defenses, pushing for a cross-ministerial effort that brings multiple agencies together in a coordinated, whole-of-government response.
In September 2025, the National Security Office announced that it would implement “comprehensive” cyber measures through an interagency plan, led by the South Korean president’s office. Regulators also signaled a legal change giving the government power to launch probes at the first sign of hacking — even if companies haven’t filed a report. Both steps aim to address the lack of a first responder that has long hindered South Korea’s cyber defenses.
But South Korea’s fragmented system leaves accountability weak, placing all authority in a presidential “control tower” could risk “politicization” and overreach, according to Pak.
A better path may be balance: a central body to set strategy and coordinate crises, paired with independent oversight to keep power in check. In a hybrid model, expert agencies like KISA would still handle the technical work — just with more straightforward rules and accountability, Pak told TechCrunch.
When reached for comment, a spokesperson for the South Korea’s Ministry of Science in ICT said the ministry, with KISA and other relevant agencies, is “committed to addressing increasingly sophisticated and advanced cyber threats.”
“We continue to work diligently to minimize potential harm to Korean businesses and the general public,” the spokesperson added.
This article was originally published on September 30.
Topics
© 2025 TechCrunch Media LLC.
Quiz 1:
Who is Brian Pak?
A. The CEO of a cybersecurity firm based in Seoul
B. An advisor to SK Telecom’s parent company’s special committee on cybersecurity innovations
C. The president of South Korea
D. A spokesperson for the South Korea’s Ministry of Science and ICT
Quiz 2:
According to Brian Pak, what is one of the main reasons for the shortage of skilled cybersecurity experts in South Korea?
A. Lack of resources and funding
B. Political deadlock hindering workforce development
C. Fragmented system of government ministries and agencies
D. Inadequate digital infrastructure
Quiz 3:
In September 2025, what measure did the South Korean Presidential Office's National Security take to strengthen cyber defenses?
A. Developing a comprehensive interagency plan led by the South Korean president’s office
B. Delegating authority for cybersecurity to a single government agency
C. Imposing strict regulations on tech companies without filing reports
D. Establishing a central body to set strategy and coordinate crises, with independent oversight
Similar Readings (5 items)
Summary: A breach every month raises doubts about South Korea’s digital defenses
Conversation: A breach every month raises doubts about South Korea’s digital defenses
Summary: LG Uplus is latest South Korean telco to confirm cybersecurity incident
LG Uplus is latest South Korean telco to confirm cybersecurity incident
South Korea restricting use of Chinese AI service DeepSeek
Summary
South Korea, known for digital innovation and home to global tech brands like Hyundai, LG, and Samsung, is grappling with fragile cybersecurity defenses following a string of high-profile hacks. Government ministries appear slow and uncoordinated in response, criticized for a fragmented system
Statistics
744
Words1
Read CountDetails
ID: 77a37068-5fe3-45c3-8bdf-d300fac8d534
Category ID: techcrunch
Date: Oct. 5, 2025
Notes: TechCrunch News with Quiz - 2025-10-05
Created: 2025/10/05 06:20
Updated: 2025/12/08 01:16
Last Read: 2025/10/05 08:07