Hot topics

Week 36 in review

14.09.2021 - Last week, in addition to the reports it received (which were within the normal range), the NCSC's focus was on a new development. With immediate effect, the NCSC's weekly statistics on the number and type of reports are available in interactive form, thereby simplifying data queries. Among the reports, the NCSC noted another report about a fictitious hotel website, which was ostensibly looking for new staff but then demanded a "fee".

Week 35 in review

07.09.2021 - The NCSC registered an average number of reports last week. It dealt with reports about the resurrection of websites that were thought to have been deleted. There were also renewed reports of a familiar blackmail technique involving deleted databases.

Week 34 in review

31.08.2021 - The number of reports received by the NCSC increased again last week. There are still many reports concerning fake PostFinance pages opened via Google ads. The procedure is reminiscent of fake support calls. In addition, the victims of CEO fraud are being contacted not only via email, but also by phone. And it has become apparent that it is sometimes difficult for employees to recognise phishing emails with Office 365.

Week 33 in review

24.08.2021 - The NCSC received a moderate number of reports last week. Fraudsters attempted to lure visitors into making large "investments" with a supposed "promotion" for the cryptocurrency Cardano. Reports of ransomware incidents rose slightly again, with five reports. In addition, the NCSC received several reports about Instagram and Telegram accounts offering vaccination passports and COVID-19 certificates.

Successful ransomware attacks on Swiss companies

18.08.2021 - The NCSC has observed several successful cyberattacks on Swiss companies in recent months. In these attacks, cybercriminals encrypted corporate networks using an encryption Trojan (so-called "ransomware") and successfully demanded a ransom.

Week 32 in review

17.08.2021 - The NCSC received few reports last week. Fraudsters used a fake Google ad to try to lure bank customers to a bogus site. In another case, considerable effort was made to hack a Facebook account. In addition, an increasing number of attempted attacks on Synology network storage devices were reported in Switzerland and around the world. Users are strongly advised to use strong passwords

Week 31 in review

10.08.2021 - The NCSC once again received an average number of reports last week. A report on a cloned website revealed a new modus operandi in which the customer behaviour of Swiss companies is analysed. Moreover, further attempts were made to convince victims to install malware by phoning about alleged parcel deliveries. To do this, the attackers pretended to be from Swiss Post and did not use fictitious company names like in the past.

Further security vulnerabilities for Microsoft Exchange Server

09.08.2021 - During a conference last week, security researchers presented new vulnerabilities in Microsoft Exchange Server. Hackers are now trying to detect vulnerable systems by means of scanning in order to attack them. The NCSC recommends immediately applying the patches provided by Microsoft.

Week 30 in review

03.08.2021 - The number of reports received by the NCSC remained moderate last week. Fake reviews on well-known review sites give victims of investment scams tips and contact details for getting their money back. If victims act on these tips, they are scammed a second time. In addition, fraudsters have been trying to take over other people's WhatsApp accounts by means of voicemail hacking.

Week 29 in review

27.07.2021 - The NCSC received few reports last week. DDoS attacks by the Fancy Lazarus group continue to be reported. However, the second attack that had been threatened has yet to be observed. A perfidious approach to classified ad fraud led to losses for one victim. Fraudsters' attempts to lure people into dubious investment offers are becoming more and more sophisticated.

Last modification 16.08.2021

Top of page