Fake CPF site gone, fake ICA sites found
THE fake Central Provident Fund (CPF) website that surfaced in the midst of ongoing service issues with the genuine CPF Web portal has been taken down.
The Cyber Security Agency of Singapore (CSA) acted to have it as well as other fake websites removed after these came to its attention on Tuesday.
The fake sites mirrored the websites of government and private companies which were not named by CSA and were hosted by the domain host "jinanyuz.com".
CSA said the fake websites looked authentic but had additional URL links at the bottom of the main webpage, which could redirect users to unrelated sites. These could be malicious and set up to obtain personal information.
Investigations are still ongoing and some of these fake websites can still be accessed.
The Immigration and Checkpoints Authority (ICA) also issued an advisory yesterday to warn the public about three fake websites phishing for visitors' visa and passport numbers.
ICA said a police report had been made and it was working to bring the websites down. It assured the official ICA website was unaffected and no data has been compromised.
CSA advised the public to remain vigilant to phishing sites.
A common form of online scams, phishing involves the use of fake e-mail messages and lookalike websites to trick people into entering personal data.
CSA advised users not to click on links provided in suspicious e-mail messages to access websites and not to provide personal information to requests received via e-mail.
It said telltale signs of fake websites would include suspicious Web addresses, obvious spelling and grammatical errors, unsecured pages for submission of information and websites asking for more information than is usually required, such as credit card security codes.
ADDITIONAL REPORTING BY LESTER HIO