While the world suffers in the wake of an epidemic, hackers are sending big pharmaceutical companies fake HIV results and Coronavirus information that contaminate devices with malware.
Cyber thieves using Coronavirus fears to steal Bitcoin
Security experts have warned that criminals are using everyone’s fear of the coronavirus crisis to target online victims. The National Cyber Security Center (NCSC) said that cybercriminals have the opportunity to use deadly outbreaks to conduct online attacks.
Clicking on links on bogus emails indicates that they have essential updates that have resulted in the device being infected. These “phishing” attempts can lead to victims being left out of pocket or stripped of sensitive data.
National Cyber Security Center stated:
“We know that cybercriminals are opportunistic and will look to exploit people’s fears, and this has undoubtedly been the case with the coronavirus outbreak.”
According to DomainTools senior security engineer Tarik Saleh, the number of Coronavirus themed domain name registrations has increased following reports of the first cases of COVID-19, and many of these are thought to be tricky.
In particular, one particular platform, coronavirusapp [.] Site, is prompting users to install an Android application for real-time updates on the pandemic. Instead, the app comes bundled with ransomware aptly called “CovidLock”. CovidLock asks for permission to access the lock screen. It then uses a technique known as a screen lock attack, a scam by blocking a user’s access.
The ransomware threatens to delete contacts, photos, and videos on the infected device as well as leak the victim’s social media account information and wipe all phone data unless the $ 100 ransom is paid with Bitcoin within 48 hours.
Source: Via DomainTools
Saleh said phones running on the latest versions of Android would be excellent if users set a password to unlock the screen. Since Android Nougat launched, there is protection against this type of attack. However, it only works if you have set a password. If you haven’t set a password on your phone to unlock the screen, you’re still vulnerable to CovidLock ransomware.
DomainTools researchers said they have reverse-engineered the decryption key and planned to share publicly. They are also tracking transactions in Bitcoin wallets used by ransomware.
NCSC urging the public and businesses to seek out how to spot and deal with suspicious emails
UK-based victims have been targeted by coronavirus-themed phishing emails with infected attachments with fictitious “safety measures.”
Paul Chichester, NCSC’s director of operations, said:
“We know that cybercriminals are opportunistic and will look to exploit people’s fears, and this has undoubtedly been the case with the Coronavirus outbreak. Our advice to the public is to follow our guidance, which includes everything from password advice to spotting suspect emails.”
Can you spot the difference? Please #TakeFiveTellFive by sharing our #TakeFive quiz with your friends & family to help them protect themselves against fraud and scams: https://t.co/u0fWRwp8fO pic.twitter.com/DEZ7njWMR4
— Take Five (@TakeFive) March 12, 2020
An increase in the registration of Coronavirus-related websites could mean cybercriminals are seeking to take advantage of a pandemic.
Read more:
- OXT Research: PlusToken Uses Regulated Exchanges To Dump Coins, Typically OKEx And Huobi
- A Long Island Woman Was Fined 13 Years In Federal Prison To Funneling More Than $ 150,000 To ISIS