“DDoS(Distributed Denial of Service) attack is now on Korean websites including government webpages. We’re on emergency response with our all resources including ASEC and CERT, providing emergency antivirus solution.

This case is very similar to DDoS attack on July 7, 2009 which hit all over Korea. Identified malicious codes are as below: ntcm63.dll, SBUpdate.exe, ntds50.dll, watcsvc.dll, soetsvc.dll, mopxsvc.dll, SBUpdate.exe

AhnLab predicted that there is strong possibility of occuring one more time on 18:00 today in Korean Time.”

From Ahnlab Security Blog