Kimsuky, a North Korean threat actor, ran a phishing campaign that distributed fake login pages for the popular South Korean messaging app Kakao. Kimsuky likely aimed to steal victims’ passwords; whether the campaign specifically targeted any users is unclear.
- Users of the Kakao chat application in South Korea
Suspected state sponsor
- Korea (Democratic People's Republic of)
Type of incident
- Private sector