naver portal of south korea hacked by north korean

ROK Portal Hoax by North Korean Hackers to Steal Data

A warning by the National Intelligence Service (NIS) of South Korea, has been issued about a new phishing movement targeting South Koreans. The NIS discovered that North Korean hackers are imitating a leading ROK internet portal in order to rob victims of their personal data. This latest cyber threat further highlights the sophistication of North Korea’s hacking methods and calls for immediate attention to the safety of public data.

Fake Naver Website with hoax address
The Fake Website with naverportal[.]com Address

What NIS has identified is a phishing site pretending to be the popular South Korean portal Naver. The fake portal, registered as naverportal[.]com, is similar to the appearance and functionality of the actual Naver website i.e., naver[.]com. By using almost identical domains, the hackers want to trick users into entering their credentials, giving them access to sensitive personal information.

Actual naver website with real address
The Actual Website with naver[.]com Address

North Korean Hackers Deceptive Tactics

Hackers in North Korea have a history of using copycat websites to fool users and steal their confidential data. By creating websites/domains that are similar to reputable platforms, they break users’ trust. This time, hackers replicated Naver’s site in “real-time,” with complete news sections, advertising banners, and various service menus, making it difficult for users to tell the difference between the real site and the fake site.

The attack essentially targeted high-profile individuals, such as diplomats, security officials, university professors, teachers, students, and office workers. The NIS is diligently involved in an investigation involving over 10,000 hacking emails, with almost 7,000 depicting as Naver and Daum portals as stated in the NK news.

Efforts to Deal with Phishing Campaigns

The NIS upon discovering the phishing site, swiftly warned relevant authorities. Which includes the Korea Internet and Security Agency. Collective efforts are ongoing to block the phishing site, hosted on overseas servers.

However, the NIS warns the public to be cautious when accessing unknown addresses. It has increased awareness of the advanced tactics used by North Korean hackers.

As North Korean hackers continue to improvise their techniques, the risk of being victim to phishing attacks increases. The NIS warning is a reminder to South Koreans to remain alert and be cautious when on online platforms. And it is very crucial to stay up to date about the latest cybersecurity crimes in order to implement best practices for protection.

For more news and updates on Cybersecurity, visit The Cybersecurity Club.

Post navigation

Leave a Reply

Your email address will not be published. Required fields are marked *

The Rise of the Knight Ransomware: Tactics, Victims, and Response

Massive Attacks Could Be Launched By Leveraging CVE-2023-29552, Research Warned

Taiwan Semiconductor Refused To Pay $70M To The Attacker Gang

Google Expands Its Bug Bounty Program to Tackle Artificial Intelligence Threats