Coronavirus Themed E-mail Phishing
Health Sector Cybersecurity Coordination Center (HC3)
HC3@HHS.GOV
Recently, malicious cyber threat actors have been leveraging the current news cycle to launch Coronavirus themed cyberattacks at their targets. Prominent news reporting and the resulting elevated concern for the Coronavirus issue is being used as context for a malicious email phishing campaign. The phishing emails contain links to malware that is frequently used to target healthcare organizations and their IT systems.
Attempting to exploit human greed, fear, and curiosity are common tactics among phishing campaigns – malicious e-mails deliberately crafted to entice the recipient to click a link or open an attachment in the e-mail which, while appearing helpful, compelling, or interesting, actually contains malicious code. Victims who interact with malicious links or attachments may expose their systems, networks, and valuable information. These exposures allow an attacker to use infected systems as a platform to launch additional attacks. The new Coronavirus themed phishing campaign is attempting to capitalize on concerns about the Coronavirus, a respiratory illness currently in the news and frequently making headlines. Researchers are reporting that these Coronavirus themed phishing emails contain links and downloads for the Emotet malware. At least one campaign has been identified as attempting to impersonate the Centers for Disease Control and target Americans and other English-speaking victims.
What should you do?
If you suspect a suspicious email, do not click or open attachments as these contain malicious code and may expose your systems, networks and valuable information. Instead, delete the email immediately.
Examples
News Resources
- https://www.govtech.com/blogs/lohrmann-on-cybersecurity/coronavirus-scams-prepare-for-a-deluge-of-phishing-emails-fake-alerts-and-cyberthreats.html
- https://www.proofpoint.com/us/corporate-blog/post/emotet-leverages-coronavirus-and-greta-thunberg-again-while-coronavirus-threats
- https://www.straitstimes.com/tech/wuhan-virus-hackers-exploiting-fear-of-bug-to-target-computers-gadgets
- https://www.techrepublic.com/article/hackers-using-coronavirus-scare-to-spread-emotet-malware-in-japan/
- https://www.csa.gov.sg/singcert/alerts/malicious-cyber-activities-leveraging-wuhan-coronavirus-situation
- https://www.kaspersky.co.za/blog/coronavirus-used-to-spread-malware-online/25570/
- https://securitybrief.eu/story/cyber-criminals-exploiting-coronavirus-fears
Additional Information
Centers for Disease Control and Prevention: https://www.cdc.gov/coronavirus/index.html