In the wake of the recent terrorist attack in Manchester, malicious actors may seek to capitalise on the public’s curiosity by conducting campaigns to spread malware or to intercept charitable donations.
We have previously seen criminals capitalising on people’s interest and charitable instincts during natural disasters to spread emails purporting to provide news updates, but instead contain links or attachments that direct users to phishing or malware-infected websites.
Scammers have also used emails to request charity donations and are increasingly using text messages to persuade concerned citizens to send money or to reply to premium rate numbers. We encourage users to remain cautious when handling any email with a subject line, attachment or hyperlink related to the Manchester attack. As news of this atrocity develops in the following days, we recommend users adopt the following measures to mitigate the chances of becoming a victim:
- Do not open suspicious-looking email messages, particularly those that come from unknown senders;
- Do not download file attachments or click on links embedded in unsolicited or suspicious-looking messages;
- To read news updates on the situation, do not click on any links provided within messages, but directly access the news sites by typing in the URL;
- Do not impart any personal information or send payments to unverified senders;
- If you want to make a charitable donation, go directly to the website of a trusted organisation rather than clicking on any links in an email.