CERT warns of RealMe phishing attack
The government's RealMe identification system is coming under a phishing attack, says cyber-security watchdog CERT NZ.
In an advisory put out this morning, CERT says the phishing email: "states that the user has a private message and they need to access their RealMe account. The web link in the email then takes the user to a fake RealMe website that asks the user to validate their identity and upload personal documents (eg: passport and driver's license (sic))".
RealMe is used by various government services to provide digital proof of identity and as such any successful phishing attack could prove devastating for the affected user. CERT warns that if anyone has handed over passport details they should immediately contact the Department of Internal Affairs.
The attack has also rekindled debate about the future of online elections in New Zealand with a number of users pointing to the attack as more evidence that online elections are unlikely to proceed without interference.
You must be logged in in order to post comments. Log In