Take a Virtual, Interactive Tour 

Cyber Security, Exploit

  |  
4 Min Read

COVID-19 Security Threats

COVID-19 Cyber Threats

white-hat-hacker-2

Since there is a huge focus on the spreading pandemic and attackers taking advantage of this to lure victims into opening attachments on malicious emails and click on phishing links. This is a very widespread attack and not directly coming from one source, rather many sources. The following are confirmed malicious emails using subjects containing COVID-19 or related keywords carrying RATs such as Netwire, NanoCore and LokiBot. Subject examples:

  • CORONAVIRUS (COVID-19) UPDATE // BUSINESS CONTINUITY PLAN ANNOUNCEMENT STARTING MARCH 2020.
  • Latest corona-virus updates
  • UNICEF COVID-19 TIPS APP
  • POEA HEALTH ADVISORY re-2020 Novel Corona Virus.
  • WARNING! CORONA VIRUS

The file attachments

  • AWARENESS NOTICE ON CORONAVIRUS COVID-19 DOCUMENT_pdf.exe
  • Coronavirus COVID-19 upadte.xlsx
  • CORONA VIRUS1.uue
  • CORONA VIRUS AFFECTED CREW AND VESSEL.xlsm
  • covid19.ZIP

The targets of these attacks (this could be anyone) are mostly directed towards government healthcare organizations, medical research universities, industrial manufacturing firms, and research institutes. Subject examples:

  • Coronavirus disease
  • COVID19

File attachment:

  • 20200323-sitrep-63-covid-19.doc
  • COVID-19 Supplier Notice/COVID-19 Supplier Notice.jpg.exe
  • Corporate advisory CoronaVirus (Covid-19)/Corporate advisory Co

I feel like these attacks could be very detrimental, especially if your team has the bad habit of not paying attention to what they open. You should always be aware of the risks involved with opening emails and the repercussions that can be catastrophic. As long as these are hammered in then your team should have a good understanding of malicious emails and what to look out for.gettyimages-1165464772-640x640

 

Comment

GitHub Wants Your Policy Proposals

In light of the recent leak of Twitch’s source code (over 6,000 private GH repositories) and other information, through a 125GB data torrent over 4chan.org, GitHub (GH) is now stepping up their ...
Picture of Micah Turpin Micah Turpin 4 Min Read

Golang the new standard for malware langauge?

In a recent security report by cybersecurity firm Intezer, they reported that a huge spike of malware strains being coded in Go programming has increased about 2,000% in recent years.

VMware vulnerability leaves about 6,700 servers ripe for the picking.

VMware vCenter servers have been hit in a new attack which left them exposed and vulnerable by the hackers which allowed them to take over any unpatched machine and take over companies' entire ...