As the COVID-19 pandemic unfolds, cybercriminals are ramping up attacks by exploiting public fears. Cybersecurity vigilance is essential now more than ever.
As of February 23, 2020, COVID-19 cases neared 80,000 worldwide, with nearly 2,500 deaths. Amid this crisis, cybersecurity firm Proofpoint's recent report highlights a surge in attacks leveraging coronavirus anxiety.
Threat actors launch phishing campaigns promising to expose government conspiracies around COVID-19, often including fake maps of outbreaks claimed to be suppressed by authorities.
Fake news has proliferated since the outbreak began—recall tragic cases like a man in India who died after following dubious online advice. Here, scammers use this chaos to trick users into downloading malware, such as Trojan horses hidden in email attachments, to steal sensitive data.
Proofpoint's Sherrod DeGrippo notes that these threats include keyloggers that capture keystrokes, sending passwords to attackers for access to online banking. Common malware includes Emotet and AZORult, alongside AgentTesla Keylogger and NanoCore RAT, with a focus on financial credentials.
To enhance credibility, emails mimic official sources, featuring trusted company names and links to supposed World Health Organization (WHO) updates.
Related Articles:
