New Cyberattacks Against Taxpayers
Ukraine's State Tax Service has detected a fresh wave of cyberattacks. Attackers are mass-sending fake emails to taxpayers, disguised as official communications from the agency. The subject lines claim there are discrepancies in tax filings, a tactic designed to deceive recipients. These emails contain malicious attachments or links; opening them infects the computer, granting hackers hidden remote access to the device and personal data.
The fraudulent emails are sent from third-party addresses, making it impossible to identify them as official. The legitimate domain for the tax service is @tax.gov.ua, and its main inbox is post@tax.gov.ua. Notably, the most dangerous attachments come in these formats:
- .zip
- .rar
- .exe
- .scr
The State Tax Service of Ukraine warns: 'These emails are sent from external addresses and contain harmful attachments or links. Opening them can infect your computer and give attackers hidden access to users' devices.'
Fraud Schemes and Safety Tips
In addition, scammers have launched a mass email campaign impersonating Kyrylo Budanov, head of the Office of the President of Ukraine. One such email was received by Yuriy Klufas, president of the Ukrainian National Association of Canada, requesting active media and informational support to help bring Ukrainian citizens back home.
Ukraine has also seen a rise in fraud targeting relatives of prisoners of war and missing soldiers from the Defense Forces. Scammers offer assistance in freeing captives or locating the missing, using a scheme that demands payment to add a POW to an exchange list.
To protect against such scams, the State Tax Service of Ukraine advises taxpayers to stay vigilant and follow these guidelines:
- Always check the sender's address down to the last character.
- Do not open suspicious files, even if the email subject seems urgent.
- Avoid clicking links that lead to external sites not affiliated with government portals.
If in doubt, verify information through the Electronic Taxpayer Cabinet or contact the State Tax Service support team.
These incidents highlight the growing cyber threat in Ukraine, especially amid war and instability. It is crucial for citizens to stay alert and aware of potential cybersecurity risks, as fraud can have serious consequences for personal finances and safety. Authorities urge all users to follow security measures and actively use official channels to confirm information.
As cyber threats continue to escalate, it's crucial for taxpayers to remain informed about various scams targeting their sensitive information. Recently, similar tactics have been employed by fraudsters impersonating official bodies, such as the Ukraine's Anti-Corruption Bureau. Understanding these schemes can help individuals better protect their data and avoid falling victim to malicious attacks.