[SingCERT] Phishing Emails about GeBIZ and SingNet
Published on Wednesday, 22 July 2015 18:00
[ Summary ]
Phishing emails purported to be from [email protected] are being sent to users. The contents of the email are as follows:
Dear GeBIZ Trading Partner,
The Infocomm Development Authority of Singapore (IDA) shared that more than 530,000 users have completed their one-time account update since the enhanced SingnetPass was launched last week.
If you have not done so, you are advised to update your SingnetPass account at the link below: If you encounter difficulty with your password, you are advised to get your password reset.
UPDATE FROM HERE
< Phishing URL >
Yours Sincerely, GeBIZ Service Centre
The phishing URL is targeting at SingNet users.
Read more: [SingCERT] Phishing Emails about GeBIZ and SingNet
[SingCERT] SingPass Lookalike Domain
Published on Saturday, 11 July 2015 15:41
[ Background ]
IDA has alerted the public of a suspicious website which is spelt similarly to the official SingPass website. There are also login fields on the website.
[ Impact ]
User credentials could be stolen if user enters his/her credentials to the website.
[ Solution/Workaround ]
- For Government’s e-services that require you to log in via SingPass, always do so directly from the Government agency’s website so as to avoid being a victim of phishing
- Do not enter in your user credentials to suspicious websites
[ References ]