Many Ukrainians have begun receiving emails allegedly on behalf of NPC "Ukrenergo" containing phishing links. This was reported by the Ukrenergo press service, according to UNN.
Details
They explained that scammers are masking themselves using the official address office@ua.energy and sending messages with subject lines regarding power outage schedules for June 10–12 or payment receipts. Cybersecurity experts have determined that users of mailboxes with the domains @i.ua, @ua.fm, and @email.ua are primarily at risk, though distribution to other services is also possible. According to available data, these fraudulent messages may be sent from the territory of Russia.
In the emails, recipients are prompted to download a document supposedly from the official website, which actually conceals a virus. Once launched, it is capable of stealing passwords, banking data, and personal information, as well as granting third parties access to the device for use in further cyberattacks.
Ukrenergo emphasized that the company never sends outage schedules or bills via private messages. Citizens are recommended, in case of receiving such emails, not to click on links, not to download files, to delete such messages immediately, and in case of accidental downloading — to immediately check the device with an antivirus.
Current data on restrictions are published exclusively on the company's official Facebook and Telegram pages, while detailed schedules by address are available only on the resources of local distribution system operators (oblenergos).
Scammers disguise themselves as "Diia" – Ukrainians warned of new phishing scheme08.06.26, 18:04