The National Computer Emergency Response Team (CERT) has issued a heightened cybersecurity advisory following a sharp increase in malicious online activities targeting individuals, businesses, and government portals.
According to the alert, cybercriminals are exploiting high-traffic periods and upcoming events to launch phishing campaigns, set up fraudulent websites, distribute malware, and attempt opportunistic intrusions into networks. The advisory warns that the combination of increased online engagement and more sophisticated attacker tactics has significantly raised the threat level.
CERT cautioned that successful cyberattacks could result in severe consequences, including financial losses through fake e-commerce transactions and fraudulent donation drives, theft of personal and corporate data, malware infections, service disruptions, and reputational harm through website defacement or exposure of stolen data. Poorly segmented networks and outdated systems, the advisory noted, could allow attackers to move laterally and compromise multiple connected services.
The advisory identified phishing emails, fake websites, malicious downloads, and unsafe public Wi-Fi connections as the primary attack vectors. Common lures include fake offers, charity appeals, event invitations, and themed content such as wallpapers and apps. The attacks often require minimal user interaction, such as clicking a link or entering credentials, but can have high-severity outcomes ranging from data breaches to operational shutdowns.
To counter these threats, CERT has outlined a set of preventive measures for both individuals and organizations. For personal users, recommendations include enabling multi-factor authentication, updating devices and software promptly, avoiding public Wi-Fi for sensitive work without a VPN, and using strong, unique passwords. For organizations, measures include patching and securing content management systems, deploying web application firewalls, segmenting networks, restricting remote access, and continuously monitoring for suspicious activities.
CERT has urged immediate action to patch systems, enable MFA, maintain offline backups, and strengthen monitoring and detection capabilities. It emphasized that awareness and vigilance remain the first line of defense against cyber threats, urging citizens and organizations to report incidents promptly via the official portal. The agency concluded that timely prevention and coordinated response are critical to safeguarding national digital infrastructure in the face of growing cyber risks.