NMIS ICT Servicedesk NMIS ICT Service Desk Knowledgebase Security
Memorandum No. 2022-07-0502 | Reminders on Phishing Attacks
Suggested knowledgebase articles:

Memorandum No. 2022-07-0502 | Reminders on Phishing Attacks

Please exercise caution when responding to phone calls, emails, SMS, social media posts, or other online platforms that request your phone number, email, or other personal information.

All NMIS Employees are advised to follow these reminders to safeguard you against fraud and scams:

·         DO NOT reply to any phishing emails or messages

·         DO NOT provide personal information, account details, or passwords to senders of random emails

·         DO NOT click on any files and links

·         Please IMMEDIATELY delete and disregard these emails or texts.

·         IMMEDIATELY REPORT incidences of phishing, or its variations, to your institution or banks (if bank account related).

Following are some attack strategies that could be used against users:

·         Smishing is a phishing attack through SMS or text messages. The perpetrators who use this technique can invite you to click a link they emailed you or react to their SMS with personal information. Fraudulent One-Time-PINs (OTPs) may also be sent by text message by perpetrators using a regular or unlisted phone line.

·         Spear phishing is a type of cyber attack where the perpetrator pretends to be someone the victim is familiar with, like a friend, coworker, or family member. Additionally, criminals try to do this through sending unwanted emails, messages on social media, and other online platforms.

·         Whaling is similar to phishing, but the perpetrator assumes the identity of a senior or powerful member of an organization in an effort to exploit their position of power to persuade other crucial people of that organization to divulge sensitive personal information or business data. Criminals frequently carry out these acts using unsolicited email, social media communications, and other online channels.

·         Vishing is a type of phishing assault carried out over the phone. The perpetrators may use pre-recorded audio or a script when they call their victims to deliver their message.

For more information, please refer to the following websites:

·         BSP Website : https://www.bsp.gov.ph/Media_and_Research/Primers%20Faqs/Protect_yourself_from_Fraud_and_Scam.pdf

·         DICT website: https://dict.gov.ph/?s=phishing

·         PNP Anti-Cyber crime group: http://acg.pnp.gov.ph/

The agency will never request your password or any other access information, so please be aware of this.

We highly advise you to exercise extra caution when visiting websites and communicating via email, social media, and other online channels.

If you encounter suspicious websites, emails, and posts on social media sites, please immediately inform us at PIMD- ICT at ict@nmis.gov,ph

 

 

 

Was this article helpful? Yes | No

Article Details

Article ID:
1
Category:
Security
Rating :