21.10.2025 - The NCSC regularly receives reports of phishing emails targeting TWINT users. These scams aim to steal credit card details or take over TWINT accounts – and not all of them rely on phishing websites. One recent case, which looked harmless at first but turned out to be carefully planned, involved a personal message and an early-morning money request designed to catch people off guard.
20.10.2025 - Many young people spend a large part of their free time online. Whether chatting, on social media or gaming, the online world offers endless distractions. Since a large part of social life takes place on the internet and a lot of personal data is disclosed, the risk of being manipulated also increases. One of the biggest dangers is phishing.
17.10.2025 - Florian Schütz, Director of the National Cyber Security Centre (NCSC), is representing Switzerland at two major international cybersecurity forums this month, one in Dubai and one in Singapore. By contributing to discussions on global cyber resilience, artificial intelligence and international cooperation, he is advocating for a secure and resilient digital future, and reinforcing Switzerland's role as an active partner in global cyberpolicy.
16.10.2025 - In recent months, the hacker group AKIRA has stepped up its activities in Switzerland. Around two hundred companies have been victims of ransomware attacks, with damages currently amounting to several millions of Swiss francs, and to several hundreds of millions of dollars worldwide. Since April 2024, the Office of the Attorney General of Switzerland (OAG) has been conducting criminal proceedings. The investigation is being coordinated by the Federal Office of Police (fedpol), in close cooperation with the National Cyber Security Centre (NCSC) and the authorities in several other countries that are affected. The Swiss authorities stress the importance of contacting them before taking any action and of the need to file a criminal complaint.
14.10.2025 - Scam attempts come in many forms and are a regular topic in the NCSC's weekly reviews. In this case, however, it is not necessarily law-abiding citizens who are being duped. The focus is instead on people who don't always play by the rules themselves.
13.10.2025 - The National Cyber Security Centre (NCSC) and the National Test Institute for Cybersecurity (NTC) have conducted a pilot project to test two open source software solutions TYPO3 and QGIS for security vulnerabilities. Vulnerabilities were found in both products, which have since been fixed by the developer community. The pilot project has shown that targeted testing can strengthen the security of open source software (OSS) and increase Switzerland's cyber resilience. The NCSC is currently examining how security testing of OSS can be established on a permanent and structured basis in the future.
07.10.2025 - Exercise caution when selling things online. A well-known scam involving classified ad platforms has taken a dangerous turn: in addition to using phishing websites to harvest credit card details, criminals are now trying to trick victims into installing malware. Info stealer malware captures not just individual login credentials, but all passwords, financial details, and personal data stored on the computer. This week's review examines this new tactic and explains how you can protect yourself.
02.10.2025 - Phishing is one of the biggest threats on the Internet. Cybercriminals specifically exploit human emotions such as fear, curiosity and stress to tempt users to act rashly. Through the use of artificial intelligence, phishing is now well established as a global mass phenomenon.
30.09.2025 - Last week the NCSC received an uptick in reports of phishing attempts that combine phishing with bogus support calls. The aim is to apply pressure and single out particularly susceptible targets.
29.09.2025 - Since 1 April 2025, there has been a legal obligation in Switzerland to report cyberattacks on critical infrastructure. The National Cyber Security Centre (NCSC) regards the results after the first six months as positive. So far, a total of 164 reports have been received from critical infrastructures. From 1 October 2025, the planned sanctions for failing to report attacks will come into force.
