The GCSB’s National Cyber Security Centre is emailing thousands of New Zealanders to notify them that their devices may be impacted by malicious software.
A statement from the NCSC says its email directs recipients to the NCSC’s Own Your Online website for advice on how to remove the malware and provides general cyber security advice to help address potential risk to their online accounts.
Emails are going out to around 26,000 email addresses.
The NCSC’s Chief Operating Officer, Michael Jagusch, says the email relates to malware known as Lumma Stealer, which typically impacts devices using Microsoft Windows operating systems.
The malicious software is designed to steal sensitive information, like email addresses and passwords, from devices typically for the purposes of fraud or identity theft.
The use of Lumma Stealer and other similar malware by cyber criminals is an ongoing international issue.
“We were alerted to the issue through our cyber security partnerships and have worked with New Zealand government agencies and financial institutions to contact some of the affected users,” Jagusch says.
“However, there is a large group of users we are now contacting directly.
“This is the first time that we have conducted such a large-scale public outreach, and we want to assure recipients that the email from the NCSC is legitimate,” he says.
If people have concerns, they should double-check that the sender address is [email protected].
Click here to read NCSC guidance about Lumma Stealer on Own Your Online
