On Tuesday 7 July, Swift was alerted to a phishing incident potentially impacting our customers.
An email masquerading as an official Swift email from a recognised address (cs.deployment@swift.com) was sent to customers, containing an attached file. The email asked the recipients to open the attachment, which was actually a piece of Java-based malware.
We became aware of this as certain recipients were not in the office, and their Out of Office replies were sent to the Swift email address in question.
The incident is currently being investigated, but if you receive any inquiries or questions from customers, please direct them to Customer Support.