Warning against false emails purporting to be from the FOPH

Bern, 14.03.2020 - Since Friday lunchtime (13 March 2020), cybercriminals have been exploiting public anxiety related to the coronavirus. They are attempting to spread malware using emails purporting to be from the FOPH. The Reporting and Analysis Centre for Information Assurance MELANI is therefore warning the public. Delete such emails immediately.

Using false emails and posts on the subject of the coronavirus, cybercriminals are currently attempting to infect computers and spread a malware entitled AgentTesla. The emails appear to show the sender as being the Federal Office of Public Health (FOPH). MELANI is urgently calling on the public to ignore such emails, not to open any attachments, and on no account to click on any links they may contain. The malware is installed by opening the attachment or by clicking on a link in the mail. This allows the attackers to gain remote access to the computer and obtain passwords. Should you happen to accidently open such an email, turn off the computer immediately. If possible, reset the computer or contact a specialist support service. Change all your passwords straight away.

MELANI is monitoring the situation and is in close contact with the relevant authorities.

Address for enquiries

Pascal Lamia, Melde- und Analysestelle Informationssicherung MELANI
Tel. +41 58 463 45 06, pascal.lamia@isb.admin.ch


Federal Department of Finance

Federal IT Steering Unit (ab 01.01.2021: Digitale Transformation und IKT-Lenkung)