However, physical letters still find their way to rusty, unsupervised, and often forgotten mailboxes.
However, the QR code links to a malicious app known as “Coper” or “Octo2.”
The legitimate AlertSwiss service is used by federal and cantonal agencies to provide weather information to Swiss citizens.
The NCSC is urging recipients of the fake letter to report the incident using the agency’s officialonline form.
The letter should then be securely destroyed.
Meanwhile, initial digital countermeasures against the threat are already in place, according to the NCSC.
The agency plans to use user reports to strengthen its efforts to combat the campaign.
The Coper/Octo2 malware looks like it’s more sophisticated than a typical cybercrime campaign.
The agency recommends downloading mobile apps exclusively from official app stores on both iOS and Android devices.
