UK CAA phished

Gary Mortimer

Not a good look for a unit preparing to roll out a national registration scheme. Spotted early this morning by Drone Stuff This Week regular and gardening guru Ian Hudson the CAA has just released advice.

Let us hope the 4.1 million pound registration database has better security.

I shamelessly lifted the image from Twitter, created by @EmeraldSkyMedia

Unfortunately the CAA has been the victim of a sophisticated phishing attack resulting in a small number of emails being sent to external parties. We have taken steps to prevent this issue continuing including notification to the National Cyber Security Centre (NCSC) and our Email Infrastructure Protection Services.

We believe that you may have received one of these email messages from CAA contacts during this period, these messages may have a Subject line that is your name and include a URL or web link and words in the message body including ‘notification received’ or ‘notification snipped’. Please do not click on any links contained within these messages.

It may be that built-in email protection services have blocked the delivery of this message to you but if you have received a malicious message please consider the following advice:

Firstly, if you have simply opened the email then you need not worry – simply delete the email from your inbox and take no further action
If you have either clicked the link or followed the link and entered your logon details then PLEASE RESET THIS PASSWORD IMMEDIATELY

If you have any questions regarding this event please contact Information.Security@caa.co.uk with your contact details and we will respond to you as soon as we can.