Executive summary

We are aware of an active phishing campaign which is spoofing the Guernsey Financial Services Commission’s email domain. The official domain is gfsc.gg. Threat actors are impersonating this, and so far have been recorded as using gg-gfsc.com and/or g-gfsc.com. If you have received an email from the commission and are unsure of its authenticity do not click any links or attachments and forward it to phishing@gfsc.gg.

What’s the risk to me or my business?

Cyber attackers are utilising deceptive email domains that closely resemble the official commission's email domain to conduct phishing attacks. Falling victim to such attacks can lead to unauthorised access, data breaches, financial loss, and damage to the reputation of the affected party. The only domain used by the GFSC is gfsc.gg.

What can I do?

Black arrow recommends being extra vigilant when dealing with emails from the GFSC, if you are unsure of its authenticity do not click on any links or attachments and forward the email to phishing@gfsc.gg.

Further information and guidance can be found here:

https://www.gfsc.gg/news/spoof-emails-1

Need help understanding your gaps, or just want some advice? Get in touch with us.

#threatalert #threatintelligence #cybersecurity

The emails are being received from the domain “@mail-gfsc.com” and may contain malicious links or attachments. The commission are directing users to forward these emails to phishing@gfsc.gg, and to follow the guidance put in place with the Commission’s Cyber Rules and Guidance 2021. Further information from the commission can be found here: Spoof emails | GFSC

If you suspect you may have been targeted by one of these campaigns and would like to assist us in raising awareness of the risk to others, please contact us via phishing@blackarrowcyber.com