Cyber-Security Advisory: "Important Message Attached"

Written by Publisher on . Posted in IT Advisory

A recent phishing attack via e-mail attempts to draw the attention of target recipients with the subject line "IMPORTANT MESSAGE ATTACHED" while the sender may appear to be from legitimate email addresses such as the two reported PNP offices where the purported messages came from. Accordingly, the senders forged the emails of said offices using the name of a particular personnel and sends out phishing messages to all their contacts with a malware-loaded pdf file attachment.


These email addresses may have been infected when they opened the attachment, with the malware automatically forwarded to the address book entries of the victim's email account.

This act was considered by Google as web forgery intended to trick the recipients to disclose their financial, personal or other sensitive information by filling up the form when the attachment is opened. Authorities dubbed this attack as “spear fishing” – defined as a targeted attack on a specific person or organization pretending to be from a known individual, organization or business. Although often intended to steal data for malicious purposes, cybercriminals may also use this to install malicious software on a target computer. The hacker uses email pretending to be from a legitimate source and ask the reader to click the attached file or link that will lead them to a cloned website, tricking the user to download a malware or exfiltrate data from the computer or mobile device of the target. The harmful effects of this include data and identity theft, interfere with the normal functioning of the device, and the much feared ransomware.

To avert further spreading this attack, once a message having the same nature is received, the recipients are advised to report it as a spam in the e-mail program. Also, be wary of all the attachment received. Those who have received this type of email are warned not to respond to it and to never open the attachment nor any hyperlink. Recipients are also advised to coordinate with the sender to confirm that they indeed have sent a message with the corresponding attachment.

Cyber-Security Advisory: Emails Leading to Fake Websites

Written by Publisher on . Posted in IT Advisory

Three emails have recently been flagged by administrators of the Philippine government email system due to the suspicious nature of their content. This messages could prove harmful to email users when the payload attachments and links are activated. These emails have bypassed the spam filter of some email programs.


One is a phishing attack coming from an unknown sender with email address Jessica <This email address is being protected from spambots. You need JavaScript enabled to view it.>; whose email message has the subject line "quota exceeded" has been targeting government email accounts in the country. Accordingly, the said attack draws the attention of the recipients wherein email users are directed to a fake website and asks for the recipients to enter their private information. Another email coming from someone using the handle System Administrator <This email address is being protected from spambots. You need JavaScript enabled to view it.>; with subject line "babala" has the same modus operandi.

The third is a message from an unknown sender with the handle Christina Mcelhone <This email address is being protected from spambots. You need JavaScript enabled to view it.>; having a subject line "Job Application". Accordingly, said message convinces users that they are handling "secure" documents to trick them into enabling macros after opening malicious PDF/Word documents. Users are instead kicking off a download process that will likely result in the installation of a ransomware or a banker trojan.

If emails are received from these addresses or from any suspicious senders, press the REPORT IT AS SPAM button in your email programs to stop it from spreading further.

Lock full review www.8betting.co.uk 888 Bookmaker

Connect with us