The Tax Service warns of a large-scale mailing of fake letters sent in the agency's name
The State Tax Service of Ukraine has detected a new wave of mass fraudulent email campaigns targeting domestic taxpayers. Cybercriminals are sending emails disguised as official notifications from the tax authority in an attempt to intimidate businesses.
To manipulate recipients, hackers use alarming subject lines, such as “Request for Documents and Explanations as Part of a Tax Audit.” The main goal of this scheme is to force a frightened business owner to open attached files or click on links, which infects the computer with viruses and grants attackers remote access to the device and the company’s financial accounts.
The agency emphasizes that these malicious emails are sent from third-party domains (for example, [email protected]). Official letters from the State Tax Service are sent only from the government domain @tax.gov.ua, and the only official email address is [email protected]. The greatest danger comes from attached zip or rar archives, PDF documents, and files with the exe and scr extensions, which are used to spread spyware.
To protect corporate networks, tax officials urge businesses to strictly adhere to basic cyber hygiene rules: carefully verify the sender’s email address, ignore suspicious attachments, and do not click on questionable links without additional confirmation from the recipient.
This was reported by the State Tax Service’s press office.
In Kryvyi Rih, police uncovered an international fraud scheme in which the perpetrators posed as representatives of a major metallurgical giant and defrauded foreign companies of nearly 7 million hryvnias. The perpetrators entered into fictitious contracts for the supply of metallurgical products and embezzled the funds received.
A 11.5 million hryvnia scheme: a National Guard accountant will stand trial in the Kyiv region.
The State Bureau of Investigation has announcednew charges against a former official from Mykolaiv.