Naver is releasing a casebook of phishing distribution examples and moving to strengthen its response system.

On Jan. 30, Naver said it analysed phishing attacks that occurred over 21 months from January 2024 to September 2025 and compiled the findings into a casebook. It also released countermeasures and a comprehensive defence strategy for evolving attack methods.

The analysis found that spam distribution methods, such as impersonating public institutions or threatening account security, were the most common. More recently, tactics have evolved into forms that abuse search and simple login, it showed.

Naver activated its in-house detection system to identify phishing sites in advance. It said this led to blocking about 566 search phishing distribution sites. It is also operating a dedicated module to collect information on simple login phishing pages. The collected information was immediately notified to partners, enabling rapid removal of phishing sites.

To protect users, it applied a safe browsing function to the Whale browser and the Naver app. This blocking system is set to be expanded across all Naver services. It is also running ongoing alerts and awareness-raising campaigns for users, in addition to technical responses.

It is also strengthening international cooperation. Naver joined the international anti-phishing consultative body APWG in 2022 and has continuously provided data. It was recognised for these efforts and selected as a long-term data contributor.

Huh Kyu (허규), a Naver leader, said, "In a situation where phishing threats are rapidly evolving and spreading across the internet, we are continuing our defence strategy through technical and institutional efforts." He added, "Going forward, we will build a cooperative, security response ecosystem by establishing a real-time data-sharing system."