PNG Cyber Safety

Home
Papua New Guinea
Port Moresby
PNG Cyber Safety

Contact information, map and directions, contact form, opening hours, services, ratings, photos, videos and announcements from PNG Cyber Safety, Public & Government Service, Level 2, TISA Ruma, Section 427, Lot 03, Islander Drive, Hohola, Port Moresby.

A Cyber Safety awareness page, an initiative of the PNG Government through the National Cyber Security Centre (NCSC), for protecting citizens online, ICT systems and the technological devices that we use.

15/05/2026

📢 Join Our Official WhatsApp Channel

Stay updated with the latest Cyber Safety Awareness, alerts, tips, and digital safety updates straight from us.

💬The best part?
Our followers get the chance to help decide which cyber safety topics we post from time to time through polls and engagement posts.

Our channel is highly active and officially verified with a Blue Tick, showing it is authentic and trusted.

📲 Click on the link below to follow and be part of the cyber safety community.

Link: https://whatsapp.com/channel/0029VayYT9U9MF91wtgea526

14/05/2026

ALERT | Beware of AI Clone Investment Scams

Scammers are now using Artificial Intelligence (AI) to create fake videos using footage from mainstream media outlets. These criminals steal news clips, clone voices, add media company logos, and make it appear as if trusted reporters or news presenters are promoting fake investment schemes such as the “Amy Investment”.

This is dangerous because many people trust the media. These fake AI-generated videos can convince people, especially elderly citizens, retirees, and those with limited digital literacy, to invest their hard-earned savings into scams.

What is AI Cloning?
AI Cloning is when scammers use technology to copy a person’s voice, facial expressions, and appearance to create fake videos or audio recordings that look real.

How to Identify Fake AI Videos:
• The voice may sound unnatural, robotic, or not match the person’s usual accent or tone.
• Lip movements may not properly match the words being spoken.
• The reporter may sound completely different from how they normally sound.
• The video may contain awkward pauses, strange pronunciation, or unnatural facial movements.
• The content is often shared from fake pages, not the official media company page or channel.
• The video usually promotes “easy money”, “guaranteed profits”, or urgent investment opportunities.

Stay Safe Online:
• Always verify information from official media pages and trusted sources.
• Never invest money because of a social media video alone.
• Be cautious of investment schemes promising fast or guaranteed returns.
• Talk to family members before sending money online.
• Report suspicious videos, pages, and scams immediately.

THINK BEFORE YOU TRUST.
Not everything you see or hear online is real anymore. AI technology can now be misused to create convincing fake content designed to scam innocent people.

Stay alert. Stay informed. Stay cyber safe.

Follow our WhatsApp Channel: https://whatsapp.com/channel/0029VayYT9U9MF91wtgea526

13/05/2026

AWARENESS | SIM SWAP FRAUD

Last week, we explained how scammers trick mobile providers into transferring a victim’s phone number onto a SIM card they control. Once they gain access to the number, they can receive OTPs, verification codes, calls, and messages to access important accounts.

Today, let’s look at the warning signs and how you can protect yourself.

WARNING SIGNS OF A SIM SWAP ATTACK:
• Your phone suddenly loses network signal or shows “No Service”
• Calls and SMS messages stop coming through
• You receive password reset or login alerts you did not request
• You suddenly cannot access your email, social media, or banking apps

HOW TO PROTECT YOURSELF:
• Avoid sharing too much personal information online
• Be cautious of suspicious links, scam calls, and phishing messages
• Use strong and unique passwords for your accounts
• Use Authenticator Apps instead of SMS-based OTPs
• Ask your mobile provider about SIM protection or account PIN security

If your phone unexpectedly loses signal for a long period, contact your mobile provider immediately to confirm your SIM has not been swapped.

Protect your number. Protect your identity. Stay Cyber Safe.

Follow our WhatsApp Channel: https://whatsapp.com/channel/0029VayYT9U9MF91wtgea526

07/05/2026

AWARENESS | Understanding Sim Swap Fraud

SIM Swap Fraud, also known as SIM Hijacking, is a growing cybercrime where scammers take control of your mobile phone number without physically stealing your phone.

Your SIM card connects your phone number to your mobile network. Criminals exploit this by pretending to be you and convincing a mobile provider to transfer your number onto a SIM card they control. Once the transfer is successful, your phone loses signal, while the scammer begins receiving your calls, SMS messages, One-Time Passwords (OTPs), and verification codes.

This is dangerous because many online services rely on phone numbers for password recovery and Two-Factor Authentication (2FA). With access to your number, scammers can:
• Reset your email passwords
• Access mobile banking accounts
• Take over Facebook, WhatsApp, Instagram, and other social media accounts
• Steal money or sensitive information
• Impersonate you to scam others

HOW DO SCAMMERS DO IT?

Cybercriminals usually collect personal information about their target first. This may come from:
• Social media profiles
• Phishing scams
• Data breaches
• Fake giveaways or online forms
• Publicly shared personal details

They then contact the mobile provider pretending to be the victim, often claiming:
• “My phone was stolen.”
• “My SIM card is damaged.”
• “I upgraded my phone.”

If the provider’s verification process is weak, the number is transferred to the scammer’s SIM card.

Tomorrow, we will continue this awareness by looking at the warning signs of SIM Swap Fraud, how you can protect yourself, and what to do if you become a victim, so stay tuned and stay cyber safe.

Follow our WhatsApp Channel: https://whatsapp.com/channel/0029VayYT9U9MF91wtgea526

01/05/2026

AWARENESS | Protect Your Email

Email is one of the most targeted entry points for cyberattacks. It connects to your personal information, finances, and workplace systems, making it valuable to attackers.

Today’s threats go beyond simple scams. Cybercriminals use phishing emails, malware attachments, Business Email Compromise (BEC), and even AI-generated messages that look convincing. Some also use QR codes (quishing) or hacked accounts to trick users. One small mistake can lead to serious consequences like identity theft, financial loss, or data breaches.

HOW TO PROTECT YOURSELF
Staying safe requires both smart habits and strong security:
- Enable Multi-Factor Authentication (MFA). Even if your password is stolen, MFA adds a second layer of protection.
- Use strong, unique passwords and never reuse passwords across accounts. A password manager can help.
- Be cautious with emails, don’t trust messages that create urgency or ask for sensitive information.
- Check links before clicking, hover over links to see where they really lead.
- Avoid unknown attachments as they may contain malware that infects your device.
- Keep your software updated. Updates fix security vulnerabilities attackers exploit.
- Monitor your account, and watch for unusual logins, password resets, or unknown forwarding rules.
- Back up important emails. This helps recover data in case of ransomware or accidental loss.

FOR ORGAIZATIONS
Email security goes beyond basic filtering. Businesses should:
- Use authentication protocols like SPF, DKIM, and DMARC to prevent spoofing
- Train staff regularly on phishing and social engineering tactics
- Use advanced email security tools that detect hidden threats
- Apply Data Loss Prevention (DLP) to protect sensitive information
- Secure cloud platforms like Microsoft 365 or Google Workspace

Email security is not just about technology, it’s about awareness. Cybercriminals rely on people reacting quickly without thinking. Take your time, verify messages, and stay alert. A few seconds of caution can prevent major damage.

Follow our WhatsApp Channel: https://whatsapp.com/channel/0029VayYT9U9MF91wtgea526

24/04/2026

We celebrate Girls in ICT Day, a reminder of the importance of empowering more women and girls to explore opportunities in the digital space.

Meet Beverly Manoa, a Cybersecurity Analyst, working in one of the most critical and fast-growing areas of ICT. Her story reflects the dynamic nature of cybersecurity and the continuous learning it demands, as well as the growing need for skilled professionals to protect our digital world.

Her journey is a strong reminder that ICT is not just a career path, but a space where women can thrive, innovate, and lead.

21/04/2026

AWARENESS | Fake Police Bail Calls

A scam is going around where criminals call people pretending to be police officers. They may tell you that your brother, sister, or another family member has been arrested for a serious crime and is in danger. To make it more believable, they might say the victim’s family is outside the station and threatening retaliation.

The caller will then ask you to send money quickly for “bail,” usually through SMS banking, EFTPOS, or mobile transfer. They will pressure you to act fast and may even have another person call you pretending to be a relative of someone involved, offering to “help” collect the money. The goal is to scare you so you send money without checking the truth.

In reality, this is a coordinated scam. In one case, the family confirmed that the person who was supposedly arrested was actually at home safe. This shows how far scammers will go to create panic and confusion.

KNOW THE FACTS:
- Police will not ask for bail money over the phone
- Bail payments are not done through mobile money transfers
- Real police matters require you to go to the station in person

STAY SAFE:
Always stay calm and take a moment to verify. Call your family member or someone close to them, and contact the police station directly using official numbers. Never send money to someone you do not know or cannot confirm.

Remember: Stop – Think – Verify. Scammers rely on fear. Don’t let panic make the decision for you.

Follow our WhatsApp Channel: https://whatsapp.com/channel/0029VayYT9U9MF91wtgea526

08/04/2026

AWARENESS | Beware of Quishing

Quishing (QR Code Phishing) is a scam where cybercriminals use fake QR codes to trick you into visiting malicious websites or downloading harmful content. These codes can appear on posters, emails, social media, or even payment points, once scanned, they may steal your personal information, login details, or financial data.

Always think before you scan. Avoid scanning QR codes from unknown or suspicious sources, double-check where the link leads, and never enter sensitive information on untrusted sites.

Stay alert, one quick scan can lead to serious consequences.

Follow our WhatsApp Channel: https://whatsapp.com/channel/0029VayYT9U9MF91wtgea526

03/04/2026

SNIPPET | What Does “Bcc” Mean in Emails?

Bcc stands for “Blind Carbon Copy”, and it’s one of the most useful (but often misunderstood) features in email.

When you add someone to the Bcc field, they will receive the email just like everyone else… but their name and email address stay completely hidden from all other recipients. Even people in the “To” and “Cc” fields won’t know they were included.

HERE’S WHY THAT MATTERS:
- Privacy protection: If you’re sending an email to many people (especially those who don’t know each other), Bcc keeps everyone’s email address confidential.

- No reply-all chaos: Bcc recipients won’t be part of “Reply All” conversations, which helps prevent long, messy email threads.

- Clean and professional: It’s commonly used for announcements, newsletters, or official updates to large groups.

- Quiet copies: You can Bcc yourself or a supervisor to keep a record without making it obvious.

FUN FACT
The term “carbon copy” comes from the old typewriter days, where carbon paper was used to create duplicate copies of a document. “Blind” simply means those copies are hidden from view.

QUICK TIP
Use Bcc responsibly, while it’s great for privacy, overusing it in workplace emails can sometimes come across as secretive.

Follow our WhatsApp Channel: https://whatsapp.com/channel/0029VayYT9U9MF91wtgea526

02/04/2026

ADVISORY | Cyberattacks Targeting Online Code Repositories

The National Cyber Security Center (NCSC) is alerting all Government departments, agencies, organizations, and users about increased cyberattacks targeting online code repositories. This advisory applies to anyone who manages code, publishes software, or uses third-party packages from online sources.

Threat actors are gaining access to repositories through phishing, vishing, social engineering, stolen credentials, compromised authentication tokens, and infected software packages. Once access is gained, they may modify software packages to spread attacks, search for passwords and sensitive data, leak stolen information publicly, or change private repositories to public. These actions increase the risk of further attacks and expose organizational systems.

To reduce risk, organizations should check systems and logs for unusual activity, use only trusted and verified software packages, and ensure staff are aware of the risks of unverified packages. It is also important to enable security features within code repositories to detect suspicious activity and immediately change any exposed passwords, keys, or tokens.

Compromised software packages present a serious risk because they are often widely used across multiple systems. Organizations should always know what software and versions they are using and keep accurate records.

Immediate action is required to protect systems and data. For support or to report an incident, contact the National Cyber Security Center (NCSC).

Let’s work together to keep Papua New Guinea’s digital space safe.

Address

Level 2, TISA Ruma, Section 427, Lot 03, Islander Drive, Hohola
Port Moresby
111

Website

http://ncsc.gov.pg/

Alerts

Be the first to know and let us send you an email when PNG Cyber Safety posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Shortcuts

Want your organization to be the top-listed Government Service in Port Moresby?