Hackers Weaponizing Covid19

By: Samantha Geary, Blogger

Security experts are saying that they haven’t seen such a spike in email scams linked to the coronavirus in years.

Almost everyone knows about the coronavirus pandemic. It has dominated our news headlines for the past month. Unless you’ve been living under a rock, you couldn’t avoid it.

Cyber criminals are actively targeting individuals and industries. These industries include aerospace, transport, manufacturing, hospitality, healthcare, and insurance.

Investigators have found phishing emails written in various languages

Example 1: ‘Click for a cure’

The phishing email purports to come from a doctor who offers a vaccine that the Chinese and UK government allegedly cover up. When people click on the attached document, it directs them to a fake webpage, specifically designed to steal login details.

The best way to see where a link will take you is to hover your mouse cursor over it to reveal the true web address. If it looks dodgy, don’t click.

Example 2: ‘Covid-19 tax refund’

This phishing email leads someone to a fake government webpage when they click on ‘access your funds now’. This page encourages them to enter personal and financial information.

Needless to say, everyone should avoid responding to any electronic communication about money.

Do not click on any links in any e-mails like this. This is not how HMRC would advise you of a potential tax refund.

Example 3: ‘Little measure that saves’

Cyber criminals pretending to represent the World Health Organisation claim that the attached document on the phishing e-mail above has details on how recipients can prevent the disease spread.

The attached document doesn’t contain any useful advice, and instead infects computers with malicious software that records every keystroke and sends the log to attackers, monitoring your every move.

To avoid this scam, be wary of emails claiming to be from WHO, as they are probably fake. Instead visit its official website or social media channels for the latest advice.

Example 4: ‘The virus is now airborne’

This scam is designed to look like it is from an official source, the ‘Centres for Disease Control and Prevention (CDC). It uses one of the organisations legitimate e-mail addresses, but it has been sent out using a spoofing tool.

The link directs victims to a fake Microsoft login page, where people are encouraged to enter their log in credentials. Then victims are redirected to the real CDC advice page, making it seem even more authentic. Of course, the hackers now have control of the email account.

One way to protect yourself is to enable two-factor authentication.

Example 5: ‘Donate here to help the fight’

This phishing CDC email asks for donations to develop a vaccine, and requests payments be made in the cryptocurrency Bitcoin. The idea behind it is absurd but it looks official.

Unfortunately, the number of these malicious e-mails are expected to grow as the real virus continues to spread, but we’ll continue to offer advice, support and services to help business and our customers overcome the cyber security issues that have been created due to Covid19.