Current incidents


Phishing in the name of SBB
We are currently seeing a number of phishing variants using the SBB and Swisspass names. For example, the message refers to a ticket refund or pretends that the Swisspass account is restricted. Never divulge personal data such as passwords or credit card details on a website that you have accessed by clicking on a link in an email or text message.
16.03.2023 14:00
Fake websites imitate Courier Service Swissconnect
The NCSC is currently receiving numerous reports from sellers on classified ad platforms. In order to organize the transport, they are contacted by alleged parcel and courier services after the sale. The names of well-known companies are misused, such as Post, DPD and DHL. Currently, the scammers create fake websites in the name of the transport company Swissconnect. Ignore such e-mails.
01.02.2023 10:50
Malware targeting hotels
The NCSC is currently receiving reports from hotels that supposed guests are trying to get hotel employees to open a link in an email and thereby download and execute malware. This allows the attackers to gain access to various hotel accounts and carry out further fraud attempts.
31.01.2023 13:40



Hot topics


Critical vulnerability in file transfer software «MOVEit»: Apply Patch quickly

02.06.2023 - The file transfer software called «MOVEit», which is mainly used by businesses, has a critical vulnerability that is already being exploited by cybercriminals. The attackers are exploiting the vulnerability to steal files from the file transfer software. The NCSC started to receive corresponding reports from organisations in Switzerland on 1 June. The NCSC recommends applying the security patch as quickly as possible.

Week 21: Hacked Linux servers as a money mules

30.05.2023 - When we hear about systems being hacked, few of us would think that the cybercriminals were interested in the system's resources rather than the data stored in it. It is well known that cybercriminals often take systems over and use them to carry out computing operations for crypto-mining purposes. A case reported to the NCSC revealed another method which cybercriminals are using to try and make money with hacked systems.

Press releases


Java script is required to display press releases. If you are unable or unwilling to activate Java script you may use the link below to access the Federal Administration News Portal, where you can read the announcements.

To the Federal Administration News Portal