Weekly review of the National Cyber Security Centre Finland (NCSC-FI) - 24/2025

Scam calls in the name of NCSC-FI

The NCSC-FI has received reports of scam phone calls in which the caller claims to represent the NCSC-FI and attempts to obtain sensitive personal or banking information. These calls often include claims of suspicious activity on the recipient’s bank account and requests to confirm details in order to "secure" the account. The scammers aim to create a sense of fear and urgency to pressure the victim into acting quickly.

The NCSC-FI never asks for personal identity codes, online banking credentials, passwords or any other sensitive information over the phone or by email. The NCSC-FI will also never request that you perform banking operations or transfer money.

How to recognise a scam caller?

• Be cautious if the caller urges you to act quickly. Scammers often use pressure tactics to push you into making poor decisions.
• You can end the call at any time if it feels suspicious.
• Never share passwords, PIN codes or card details over the phone. Banks and authorities will never ask for such information by phone.
• Don’t trust the caller’s claim alone. You can always ask what the matter concerns, then hang up and call the organisation using its official phone number.

What to do if you receive a suspicious call from someone claiming to be an authority:

1. Do not give the caller any of your personal information.
2. Write down the caller’s name and the authority or agency they claim to represent.
3. End the call.
4. You can verify the authenticity of the call by contacting the authority’s official customer service or switchboard. Do not use any contact details provided by the caller — instead, find them on the official website. Tell the switchboard the name of the caller and ask to be connected to them. The switchboard number for Traficom is +358 29 534 5000.

If you suspect you have been scammed and have made a payment, or if a criminal has gained access to your online banking or card details, contact your bank immediately and report the matter to the police. You can also notify the NCSC-FI about any suspicious contact attempts.

Cyber sector in transition webinar explored quantum and space technologies

The first Cyber sector in transition (Kyberala murroksessa) webinar of the spring season, held on 9 June, focused on the development, opportunities, and security challenges of space and quantum technologies. Over 400 participants had registered for the event.

The programme included:

• An overview of the current cyber security situation in Finland, presented by Samuli Bergström, Director at the NCSC-FI at Traficom
• From qubits to space: A presentation by Senior Advisor Joonas Mikkilä from Technology Industries of Finland on the Sitra and VTT report Critical Digital Tech from Finland: Driving Growth and Security in Europe
• An introduction to Finland’s quantum technology strategy by Ministerial Adviser Martti Myllylä from the Ministry of Economic Affairs and Employment
• A presentation on the use of satellite technologies and services for national preparedness, given by Kirsi Karlamaa, Director of Technology and Strategy at Traficom
• A panel discussion titled Critical technologies and the future of security – challenges and opportunities, moderated by Peter Sund from the Finnish Information Security Cluster (FISC). Panellists included Jouni Flyktman from IQM Finland Oy, Ilmari Luoma from ICEYE Oy, Kirsi Karlamaa from Traficom and Juha-Matti Liukkonen from Reaktor Group Oy.

To conclude the event, General Secretary of the VAHTI board Kimmo Rousku from the Digital and Population Data Services Agency, who acted as moderator for the day, presented a case study on How can AI services be used to study the themes of the event or other emerging topics? What does in-depth research reveal about the state and future of quantum computing?

This webinar continues the seminar series launched last year, which covered the impact of AI, quantum technology, and regulatory changes on the cyber sector. The series has also featured discussions on the strategic development of cyber security in Finland. The webinars are jointly organised by Traficom, the National Emergency Supply Agency, the Finnish Information Security Cluster (FISC), and the Digital and Population Data Services Agency.

A recording of the webinar is available on our YouTube channel:  

Cyber weather for May has been published

May was mostly calm in terms of cyber security, although a few isolated storm clouds darkened the otherwise partly cloudy cyber skies.

Phishing and fraud followed seasonal summer patterns, with an increase in observed incidents. Notably, scams and messages themed around banking, postal services, taxation, and vehicles stood out. Toward the end of May, there was also a rise in AiTM (adversary-in-the-middle) phishing attacks that are capable of bypassing two-factor authentication.

A major positive development was the long-awaited launch of the European Union Vulnerability Database (EUVD) in mid-May. The EUVD provides an alternative to the U.S.-based CVE database, reducing Europe's dependency on external services.

Recently reported scams

In this summary, we provide information about scams reported to the NCSC-FI during the past week.