Cybersecurity Advisory on SSS Emergency Bonus Phishing AttackSince March 18, 2020, a post entitled “P20,000 Para sa…
Posted by Department of Information and Communications Technology – DICT on Monday, March 23, 2020
MANILA – The Department of Information and Communications Technology (DICT) warned netizens of a “phishing” scam on Facebook which baits users into giving away personal or sensitive data through a fake post of the state-run pension fund Social Security System (SSS).
In a Facebook post on Tuesday, the agency said the fraudulent post was titled “P20,000 Para sa Lahat ng SSS Pangtawid” and was circulating on the social media platform since March 18.
“Clicking it directs the user to RANDOMNAMES.CLUB, which is a phishing site, and proceeds to repost the same link on the user’s Facebook wall,” the DICT said.
According to cybersecurity website phising.org, phishing is a cybercrime where targets are contacted through e-mail, telephone, text message, or other means by someone posing as a representative of a legitimate institution and lures individuals into providing personally identifiable information, banking, and credit card details, passwords, and other sensitive data.
It warned netizens of similar phishing threats and to only refer to official government websites for information on social grants, or official information and updates.
For incidents of cybercrime or assistance on matters related to information and technology, the DICT may be reached on Facebook at facebook.com/Ncertgovph and email at cert-ph@dict.gov.ph.
The department may also be reached via mobile at 0921-494-2917 (Smart) / 0956-154-2042 (Globe) or through landline at 8920-0101 loc. 1708.
On Monday, the DICT warned hospitals and other healthcare facilities in the country to prepare against possible cyberattacks during the pandemic of the Coronavirus disease 2019 in the country.
It said emergency backup systems may be employed by these establishments to ensure operational continuity in the event of possible cyberattacks through ransomware, malware, or others.
Other institutions have been warning clients and users that they will never ask for their personal information through e-mail, telephone calls or text messages.