Executive Summary
Full Summary
A phishing SMS is circulating while impersonating Bituach Leumi and offering a supposed special compensation path related to the war. The message pressures recipients to act quickly and submit a financial assistance request through a suspicious external URL hosted on pages.dev, which is not an official government domain.
Key Indicators
The message uses a non-government URL
The domain is hosted under pages.dev rather than gov.il
The content creates urgency around financial aid
Personal details are included to make the message appear legitimate
The wording is designed to push the victim into immediate action
Risk
Recipients may be redirected to a phishing page designed to steal:
Personal identification details
Financial information
Additional sensitive data that could be used for fraud or identity theft
Recommended Actions
Do not click the link
Do not submit any personal or financial information
Verify any compensation claim only through official Bituach Leumi channels
Report the SMS as phishing and delete it
Warn employees, customers, and family members about similar messages
Assessment
This campaign matches common SMS phishing and social engineering patterns that exploit public anxiety, current events, and trust in government institutions.
AI Security Advisor
Powered by Gemini
Get AI-powered security recommendations tailored to this specific threat — including risk assessment, detection guidance, MITRE ATT&CK mapping, and actionable remediation steps.
Sources
Protect Your Organization
Monitor CVEs, scan for vulnerabilities, and get real-time threat alerts — all in one platform.
Get instant alerts on Telegram
Join our public channel for real-time critical CVE alerts.
Follow @vulnios