_____________________________
A. Nature of the Attack
In contrast to the purpose of the law, CERT-PH has monitored a phishing campaign taking advantage of it.
In the malicious campaign that we observed, threat actors are sending phishing emails to their victims to verify their Virtual Wallet in accordance with Sim Card Registration. A malicious link is attached to the email, redirecting the user to a fake page of the Virtual Wallet.
_____________________________
B. Actions to be Taken
CERT-PH recommends the following actions be taken:
- Stay cautious when opening an email. Do not click on suspicious links.
- Do not provide personal information, especially account credentials to an unsolicited request.
- Only follow the official Sim Registration Instructions provided by the Telco Companies.
- Important Note: The Sim Card Registration starts on December 27, 2022. You may refer to the official Frequently asked questions provided by various telecom companies for the sim registration:
- https://www.globe.com.ph/help/sim-registration-act.html
- https://www.facebook.com/DITOphofficial/posts/pfbid02zNoySnuemrreqEeMBxD93GZ6T1N79jXMgQ49mmxhcyMenkb5rGZnjJ9acr1gK1bql
- https://smart.com.ph/About/newsroom/full-news/2022/12/19/smart-releases-sim-registration-faqs-for-all-smart-and-tnt-customers