Just recently, Cyber Security Philippines – CERT released an announcement regarding fraudulent Christmas and New Year greetings circulating online. According to the advisory, victims receive greeting notification via popular messengers. Once opened, it redirects them to a website and prompts them to input their data while a malicious file run. Then a ‘malicious script’ conducts service execution and credential access, then sends a similar message to the victim’s user contacts.
“Careful with opening greeting notification via messenger this New Year. Better yet – before opening one confirm first with your friend, family, and relatives if they indeed sent one,” in a Facebook post by Cyber Security Philippines – CERT.
It is advised that users should change the password of their banking and social media accounts and reset their browsers. Moreover, it is also advised that users update their anti-malware and scan.
Cyber Security Philippines – CERT is a Computer Security Response Team (CSIRT) recognized as the first registered Computer Emergency Response Team (CERT) in the Philippines.