We have been advised by NZ CERT (Cyber Security authority) that a number of opportunistic online scams and attacks are being experienced in the wake of the Christchurch attack.
The scams include:
- Online donation fraud
- Malware embedded in video files
- Defacement of NZ websites and denial of service.
The scams and attacks follow these formats:
- phishing emails containing links to fake online banking logins. These emails also contain fraudulent bank accounts where victims can make donations for the Christchurch tragedy
- sharing malicious video files on compromised websites or on social media. A video file containing footage related to the attack had malware embedded in it and this malicious file is being shared online
- attackers changing New Zealand websites to spread political messages about the Christchurch tragedy
- New Zealand websites receiving threats of denial-of-service attacks, which would take them offline.
There are official channels to donate money to the victims of these tragic events. CERT NZ recommends that anyone wishing to donate seek out official platforms and banks rather than using links in emails or on social media.
What to do
- Don’t make donations by clicking links in social media sites. Go to the official donation websites, and donate directly.
- Don’t share video files on social media
- If you receive an email or link and want to check it out further, send it as an email attachment to the IT Help Desk – when you do this we learn from your experience and apply learnings across UC servers, this makes it safer for everyone.
Or log a ticket on the IT Self Service portal: https://assist.canterbury.ac.nz/selfservice/
Please share this information.