Poczta Polska warns about new phishing campaigns

A postal team appointed to respond to events that violate security on the Internet - CERT Poczta Polska - warns against emerging domains that impersonate the company. The constructions and addresses of fake websites are visually similar to the official mail site. False domains often contain e.g. a typos in the name of the post office, in the reference attached to the message.

If you receive an email or SMS, containing links indicating fraud, especially those who are deceptively reminiscent of the address of the only official domain of Poczta Polska, please inform the Polish Poczta Cyber ​​security team at incident@poczta-polska.pl .

Recently, false advertisements have also appeared on social networks along with links to domains, where the sale of shipments not collected by the addressees, sent by Polish Postal, is allegedly conducted at bargain prices. The company does not conduct this type of activity, and clicking on the link on such a page may result in downloading malware or attempt to extort data or funds.

In order not to fall victim to cybercriminals, protect your data and assets, use the following rules: 

1. Carefully read the addresses of pages sent in both emails and SMS; 
2. Do not click on references obtained from unknown broadcasters; 
3. Never respond to the request to provide personal data, passwords and/or account logins; 
4. Watch out for errors in the content of the links (e.g. converted order of letters or substitution of other letters, numbers), if you find such, there is probably a fraud; 
5. Some links attached to unknown broadcasters can install unwanted malware; 
6. Use anti -virus software, check its relevance and install updates and scan your computer regularly; 
7. Regularly change the passwords and take care of their appropriate "strength" without using slogans like: 12345, QWERTY, name, date of birth, winter2022.