The newspaper revealed that the attack involved “sending phishing through email addresses similar to those used by the newspaper, with the extension @jornaleconomico.pt”.

In a note on its website the newspaper said "The emails in question contain links to malicious sites or files, and should not be opened", but immediately deleted.

It added its IT team is “investigating the origin of the attack, as well as the extent of the damage caused”.