24.06.2025 - Some company information is publicly accessible online. While this supports transparency and can be useful, it also creates opportunities for fraud. The NCSC is currently seeing a rise in cases where criminals use publicly available information – especially from the Central Business Name Index (Zefix) – to pose as legitimate companies.
Cybercriminals’ use of publicly available information is a risk that shouldn’t be underestimated. This is why it is so important to stay alert and verify information carefully in order to protect yourself from scams.
One common example is CEO fraud, where scammers pose as senior executives and email the finance officer, for example, with an urgent request to carry out a financial transaction. Such scams often rely on information found on company websites or social media. Scammers often only need a few details – such as the names, roles and contact information of staff or executives – to craft a convincing message.
Zefix as a source of information
Classic CEO fraud is a relatively simple scam – but there are also more elaborate variations. Some scammers go as far as faking entire company identities using information from the Central Business Name Index.
In these more complex scams, they systematically search Zefix, the index containing Swiss commercial register information, for companies whose identities can easily be misused or that appear particularly lucrative.
Scammers often target companies with little or no online presence, such as small law firms, investment companies or consultancies. Scammers have almost complete free rein when potential victims have no legitimate online presence to verify contact details or otherwise identify a scam website.
Once a target has been selected, the scammers gather all the information they can from the commercial register, such as the company’s official name, address, registration number, and the names of its beneficial owners and managing directors. With this legitimate data, they create convincing fake identities. They set up entire company websites, complete with phoney email addresses, letterheads, and even social media profiles. Once they have done this, the scammers are able to convincingly represent the real company, exploiting its good reputation to gain trust and hide their nefarious intentions.
What are the scammers trying to do?
The main goal is usually financial. By posing as a legitimate company, scammers can:
- trick potential customers or business partners into making fraudulent investments;
- send out fake invoices in the name of the impersonated company;
- harvest login credentials or other sensitive information from the people they contact (phishing);
- gain the trust of business partners in order to carry out further fraud.
It’s not just the scam victims who suffer – the companies listed in the commercial register are also harmed when their names and reputations are exploited.
Recommendations for companies:
Businesses with little or no online presence should consider implementing the following security measures:
- Set up a basic official website that serves as your main source of information and point of contact. This will make it more difficult for scammers to hijack your company’s online identity.
- Regularly search for your company name online to help detect any misuse early.
- Make your staff aware of potential scams involving outsiders posing as partners or customers.
General recommendations:
- Be cautious if you are contacted unexpectedly, even if the sender’s details (e.g. company name, address, registration number) appear legitimate at first glance.
- Verify the sender’s identity using an independent source, such as the company’s official website or by calling them on their official phone number, before responding to requests or sharing sensitive information.
- Watch out for small differences in email addresses (e.g. info@company-switzerland.com instead of info@company.ch), and be aware of unusual communication styles.
- Report any suspicious incidents to the NCSC, and contact the police if you have suffered financial loss.
Current statistics
Last week's reports by category:
Last modification 24.06.2025
