Phishing emails impersonating the Korea Media and Communications Commission are spreading in an attempt to steal Naver users' account information, prompting caution.
The Korea Media and Communications Commission (KMCC) said on the 19th that malicious emails are circulating that illegally copy a prior notice of fines public service announcement recently posted on the commission's website, urging users to exercise particular caution.
The email was found to have been sent with the subject "Notice of prior fines and instructions for submitting opinions under the Act on Promotion of Information and Communications Network Utilization and Information Protection." The body includes a L.I.N.C to check the notice and the attachment. When a user clicks the L.I.N.C, they are taken to a page made to look like the Naver login screen, where the page prompts for a password to steal personal information.
The Korea Media and Communications Commission (KMCC) explained that even if an email appears to be from a government agency, users should not click the L.I.N.C if the sender is unclear or if an external site asks for personal information such as an ID or password. If account information is leaked simply by visiting a malicious L.I.N.C, it can lead to secondary damage, including identity theft, financial fraud, and additional phishing.
After receiving related inquiries, the Korea Media and Communications Commission (KMCC) informed users that the email was not an official dispatch and recommended changing passwords to prevent damage. It also reported the case to the Korea Internet & Security Agency (KISA), which blocked the problematic internet address, and it plans to continue monitoring for additional attacks using similar addresses.
A security industry official said, "Users who suspect an account information prompt should change their password immediately and review other services that use the same password as well," adding, "Enabling two-factor authentication can reduce the risk of account theft."