Advisory 87

Advisory 87: WhatsApp Targeted Phishing Attack to Vodafone customers

Release Date: 25th of June 2025

Impact : HIGH / CRITICAL

TLP Rating: Clear

CERT Vanuatu (CERTVU) and the Department of Communication and Digital Transformation (DCDT) provide the following advisory.

This alert is relevant to Organizations who utilize the above products. This alert is intended to be understood by technical users and systems administrators.

What is it?

June 24th, CERTVU received multiple reports on a specific message targeting WhatsApp users in Vanuatu. The attacker takes advantage of compromised WhatsApp accounts and uses them to disseminate mass messages to multiple WhatsApp users across the country. Mimicking it, as Vodafone wanting to reward all its old customers. The message contains a malicious link, which the attacker is inviting those interested in the offer to click on to continue the process of receiving their reward.

Below is what the message looks like.