Emergency alert will create ‘perfect opportunity’ for scammers to target the public, experts warn

The national siren alert has created a ‘perfect opportunity’ for scammers to launch phishing attacks on the public, cyber experts warn.

Britons have been urged to watch out for official-looking texts or emails in the days leading up to Sunday, as they could be bogus and contain malicious links.

Consumer watchdog Which one? said cybercriminals would use any means possible to try to steal money and personal information from victims – and the nationwide test was “no exception.”

At 3pm on Sunday, everyone in the UK will get a message on their mobile phone’s home screen, along with a sound and vibration lasting up to ten seconds.

While it won’t come in the form of an email or message, Nick France, chief technology officer at cybersecurity specialists Sectigo, said scammers “would rely on the fact that many members of the public won’t know or remember that there are not be left. supposed to be on government alert.”

He said, “This is a huge open opportunity for phishers. Phishing actors are becoming extremely sophisticated and attuned to what the public needs and expects, and they will certainly jump on the fact that a National Alarm test is coming for British citizens.”

Similar efforts were made last year when the UK government announced the ability to redeem energy vouchers via SMS notification, said David Emm, senior security researcher at Kaspersky.

A survey by the Office for National Statistics last year found that half of adults reported receiving a phishing message in the past month. Norton Antivirus blocked more than two million phishing attempts in the last quarter of 2022 alone.

Steve Wilson, director of UK and Ireland at Gen, which now owns the software, said: ‘Millions of UK smartphone users will receive the UKGOV emergency alert this Sunday, and while many may recognize it as a test drive from a legitimate government service, the warning also presents an opportunity for cybercriminals looking to defraud those who may not be able to tell the difference.

“Whether it’s aimed at people who are aware of the incoming alert or those who aren’t expecting it at all, the alert is the perfect opportunity for scammers to take action.”

Jake Moore, global cybersecurity advisor at ESET, said: “With the announcement of what will happen on Sunday, there is a chance that cybercriminals will abuse the platform to send similar messages with malicious links.

“Similar to what we saw with the NHS Covid 19 messages, threat actors are very quick to adapt to current trends and situations and abuse people’s trust in what they read.”

Lisa Webb, which one? Scams Expert said: ‘Scammers will use every possible hook to try to steal money and personal information from victims, and unfortunately the government’s upcoming nationwide test of its new Emergency Alerts system will be no exception.

“It is vital that anyone receiving the official test alert is aware that no action is required. If you are asked to download an app or provide information, it is likely an unscrupulous scammer trying to trick you and should be ignored at all costs.”

The message on Sunday 23 April will say: ‘This is a test of Emergency Alerts, a new UK government service that will alert you if there is a life-threatening emergency nearby.

“In a real emergency, follow the instructions in the alarm to keep yourself and others safe.”

Since it’s a test, people just need to swipe away the message or click “ok” and continue as normal.

The government said only government and emergency services can send emergency alerts and there is a secure authentication process for sending them.

A spokesperson said: ‘An emergency alert looks and sounds very different from other types of messages, such as text messages,’ and it’s a one-way technology that is so much more secure than texting.’