Pleasant Hill, CA: The Coronavirus Influence on Cyber Security

The coronavirus (COVID-19) is affecting almost every industry including cybersecurity. The bad guys are taking advantage of this vulnerable time and cybercrime is adapting to this health crisis: Email scams are running rampant. Many phishing emails claiming to come from the World Health Organization (WHO) or the Center for Disease Control (CDC) have been distributed to the general public. These emails claim to provide updates on the coronavirus or tips on how to stay safe. And of course, like all phishing emails, there’s a link to click or a document to download. One such download will deliver the GuLoader malicious downloader which installs the FormBook trojan. The Formbook trojan can allow attackers to steal banking and website login credentials and cookies.

In Japan, emails with Emotet (a leading malware) was sent to a massive amount of people. The email claimed to be from a Japanese disability welfare service group and contained a document that allegedly provided info about where coronavirus was spreading. Once the document was opened, Emotet was downloaded. In Indonesia phishing emails were sent out under the pretense of how to protect oneself against the coronavirus.

Compromised websites are also running rampant. Claims of coronavirus cures and donations for victims are showing up. Some websites claim to offer supplies like sanitizer or mask. It was reported that one victim in Britain paid about $19,700 for masks that they never received.

To reduce your risk of data breach or infection, continue to be aware of all malicious social engineering practices: Do NOT click on links and email attachments in unsolicited emails. And, especially now, be wary of any link or email mentioning coronavirus or COVID-19. Rather than click a link in an unsolicited email, manually enter (or save) URLs for only trusted, official sources for their COVID-19 information. Finally, do not reveal personal and financial information in emails.

Any questions or concerns about phishing emails or if you think you’ve downloaded malware, contact us immediately at Cantrell’s Computer Sales & Service.  As always, we provide the products and services to make the complex world of computers and IT networks easier and more secure for our customers.