A smishing campaign (SMS phishing) has been identified in a recent development, masquerading as the UAE’s Federal Authority for Identity, Citizenship, Customs & Port Security (ICP). The deceptive text message, which threatens recipients with forced departure from the country and a hefty fine of 50,000 AED, contains a malicious link.
ICP, based in the UAE, specialises in offering identity confirmation services to federal and local government authorities and other entities. It identifies the suitable methods for providing these services and, in doing so, is granted legal authority to request essential data and information from the competent authorities in the UAE to achieve its goals.
Upon investigation, it has been revealed that the link redirects users to a phishing site. This domain was recently acquired on February 6, 2024, by a threat actor based in Sichuan, China. The original and legitimate domain for the federal authority is https[:]//icp.gov.ae/en/.
As per our iZOOlogic researchers’ findings, the malicious link in question has been registered on the WhoIS website by a company named Jiangsu Bangning Science & Technology Co. Ltd. The registration took place on February 6, 2024, with the last update recorded on the same date. The registration for the link is set to expire on February 7, 2025.
The smishing campaign uses a deceptive website to steal personal information.
The fraudulent website is specifically designed to deceive individuals into providing their Personally Identifiable Information (PII). The public must be aware that this is a phishing attempt aimed at collecting sensitive data from unsuspecting citizens.
The smishing campaign poses a serious threat to individuals’ privacy and security, as falling victim to such scams could lead to identity theft, financial loss, and other malicious activities. Authorities recommend the public be cautious and refrain from clicking the provided link or entering personal information.
Given the sensitive nature of the information at risk, citizens are strongly advised to stay vigilant and adopt preventive measures. Authorities emphasise that legitimate government entities would not request personal information through unsolicited text messages. In case of doubt, individuals are advised to authenticate such communications directly with the relevant government agency using official channels.
To further protect against smishing and phishing attacks, individuals are recommended to update their security software regularly, be cautious of unexpected messages from unknown senders, and avoid clicking on suspicious links. Alerting the appropriate authorities about any suspicious activity can aid in promptly identifying and mitigating potential threats.
The public is urged to remain vigilant and informed about the ongoing smishing campaign impersonating the Federal Authority for Identity, Citizenship, Customs & Port Security. By staying cautious and adopting cybersecurity best practices, citizens can help mitigate the risks associated with phishing attempts and protect their personal information from falling into the wrong hands.
