The weeks in review

03.02.2026 - Over the past few weeks, the NCSC has received reports of emails claiming that the sender has shared a file via Microsoft SharePoint. The link provided really does lead to the legitimate SharePoint platform. This week's review explains the malicious intent behind these emails, the background to the scam, and its implications for users.

27.01.2026 - CEO fraud is one of the types of fraud most frequently reported to the NCSC. Last year, the number of reported cases increased from 719 to 971, compared to the previous year. Reports received last week show that scammers are continuously refining their methods. They no longer rely solely on fake emails, but increasingly use psychological manipulation and artificial intelligence. This week’s review looks at how to recognise these subtle warning signs in everyday business.

20.01.2026 - Many people think of search engines as reliable guides to the internet. The displayed results give the impression that the content has been verified and is relevant. Scammers exploit this trust. They deliberately manipulate search results to redirect users to fraudulent websites, often without the operators of the affected legitimate websites or their visitors noticing straight away.

13.01.2026 - Imagine receiving an Instagram message from a friend excitedly telling you about an investment that supposedly earned them thousands of francs in just a few hours. They even include a screenshot of their account balance as proof. Normally, you would be sceptical – but when you think the message comes from someone you know, you are more likely to trust it. That's exactly what the attackers are counting on. The latest Weekly Review explains how this scam works and why two-factor authentication (2FA) is essential.

06.01.2026 - The expiry date of the current motorway sticker ("vignette") - 31 January - is fast approaching. Since the introduction of the e-vignette on 1 August 2023, an increasing number of vehicle owners have been opting for the digital version. Although buying online is convenient, it also comes with risks. Scammers and dubious providers are deliberately exploiting this by creating deceptively realistic websites to lure in victims.

30.12.2025 - In its final weekly review of the year, the NCSC typically reflects on the reports it has received over the past twelve months. This year, the NCSC received almost 65,000 reports of cyberincidents, which represents a significantly smaller increase than in previous years. Although reports concerning 'calls supposedly from the police' still dominated in 2025, more reports in this category were recorded in the first half of the year than in the second. This decline was offset by a substantial rise in the number of reports concerning 'online investment fraud'. Despite only a moderate increase in reporting volume, scams have become much more sophisticated.

23.12.2025 - Christmas is considered a time of hope and reflection, and this is precisely what fraudsters who pose as alleged helpers are counting on. They tell victims who have lost money through online investment fraud, for example, the good news that these lost funds have 'reappeared'. But the miracle never happens. Instead of a refund, victims are presented with bills, and are pressured to pay various 'service fees' until it becomes clear that the promised refund will never materialise. This is how the promised Christmas miracle turns out to be fraud.

16.12.2025 - Last week, the National Cyber Security Centre (NCSC) received an increasing number of reports about a scam that has been observed for some time. In this case, the victim is not pressured to click on a link, as is usually the case. Instead, under the pretext of an alleged suspicious transaction, they are asked to call back a telephone number. However, anyone who dials the number will not be connected to customer service, but directly to the fraudsters' call centre.

09.12.2025 - Cybercriminals leverage how application processes work to build trust and manipulate job seekers. Enticing employment opportunities on fake profiles seem attractive and authentic, lowering candidates' level of vigilance. The hope of a successful job offer can lead to job seekers acting rashly, which scammers exploit to their own advantage.

02.12.2025 - A current phishing campaign is misusing the name "SERAFE". Under the pretext of needing to "verify your current living situation", scammers are attempting to steal large amounts of personal information. In addition to data such as name, email address, date of birth and telephone number, scammers are also asking for AHV numbers, the date of any change of address and, ultimately, credit card details. This week's review explains why this specific combination of data is particularly useful to scammers and how you can protect yourself against them.

25.11.2025 - As the days get shorter and temperatures drop, discounts are heating up. With Black Friday and Cyber Monday fast approaching, online retailers are preparing for the busiest time of the year. Consumers are looking for the best deals. And, unfortunately, scammers are busy too – and they're ready to profit from the rush.

18.11.2025 - There have been an increasing number of reports in recent weeks of scam websites claiming to belong to real Swiss companies. The affected companies often do not have their own website but are listed in the ZEFIX commercial register. Companies with a web presence can also be targeted. Scammers deliberately exploit the "Swissness factor" to create a sense of trust, as Swiss companies are generally considered reliable and trustworthy. Scammers exploit this perception to manipulate their victims.

11.11.2025 - Fewer and fewer people are falling for mass phishing attempts, so scammers are constantly refining their tactics. Instead of sending out large numbers of identical emails, they now focus on current social and economic issues and adapt their scams accordingly. Their messages are more targeted and sophisticated, designed to appear credible to the specific people they want to reach.

04.11.2025 - The NCSC has received reports of cases where iPhone owners have received a text message claiming that their lost or stolen device has been found abroad, months after it went missing. While such messages offer the hope of getting your phone back, they are in fact a targeted attempt to steal your Apple ID credentials. This week's review examines how these scams work in more detail.

28.10.2025 - The NCSC regularly receives questions from concerned members of the public such as: "How do the scammers know my name, my bank, or even my address?" It's a fair question. Fraudulent calls and emails often seem convincing precisely because they contain personal details we assume are private. The answer is complex and demonstrates just how methodical modern cybercriminals have become.