Mentioning national headlines can lend a veneer of credibility to scams. We’ve seen this tactic time and again, so it’s no surprise that COVID-19 themed social media and email campaign have been popping up online.
Hackera.in provides an overview to help you fight against phishing attacks and malware, examples of phishing message we’ve seen in the wild related to coronavirus (COVID-19).
The Covid-19 themed scam message are examples of “Phishing,” or when an attacker sends a message, email, or link that looks innocent, but it actually malicious and designed to prey on fears about the virus. Phishing often you trust, Your day-to-day diligence is the best preventative measure. Consider these points before you click
If an email sounds too good to be true (“New COVID-19 prevention and treatment information! Attachment contains instructions from the U.S Department of Health on how to get the vaccine for FREE”), it probably is. And if an email demands urgent action from you (“URGENT:COVID-19 ventilators and patient test delivery blocked. Please accept order here to continue with shipment.”), take a moment to slow down and make sure it’s legitimate. Keep in mind that legitimate sources of health information likely won’t use unsolicited email or test messages to make announcements. Some examples of phishing email — ones that we’ve recieved and you might similarly encounter — are included at the bottom of the post.
In the above email, note that the domain sending this “Gates Foundation” email includes a subtle typo. Phishing emails such as this one expect readers to only see the display name, without the email address beside it. Be vigilant to see the email address that the message is originating from.
Some comment sense measures to take include:
Check the sender’s email address
Try not to click or tap!
Do not download files from unfamiliar people
Examples of COVID-19 Phishing Emails
Hello. We have urgent information about the CORONAVIRUS (COVID-19). Presentation in RAR or ZIP The attachment contains a document with safety and coronavirus prevention instructions also instructions from the U.S Department of Health on how to get the vaccine for FREE. Send this information to all your loved ones as soon as possible. RAR or ZIP password: 12345678 __________________________________________ U.S Department of Health & Human Services 200 Independence Avenue, S.W. Washington, D.C 20201 Toll Free Call: 1-800-368-1019
Hi ______________, Kindly check the latest information about COVID-19 https://www.(XXXXX).edu/content/covid-19/information.pdf The trustee of (XXXXX) University | Health Team
Sometimes, attackers might get you to download an application that pretends to be helpful or to provide critical medical information, but actually install malware. Samad Khan recently reported many application from Google Play stores that has been posing as coronavirus application. Upon download the app, it will encrypt and lock the user’s phone.