{"id":8850,"date":"2020-04-16T08:58:35","date_gmt":"2020-04-16T12:58:35","guid":{"rendered":"https:\/\/www.cscdigitalbrand.services\/blog\/?p=8850"},"modified":"2021-11-09T14:29:01","modified_gmt":"2021-11-09T19:29:01","slug":"coronavirus-online-threats-part-4","status":"publish","type":"post","link":"https:\/\/www.cscdbs.com\/blog\/coronavirus-online-threats-part-4\/","title":{"rendered":"Coronavirus Online Threats Going Viral, Part 4: Phishing"},"content":{"rendered":"\n
By Dr. David Barnett,
subject matter expert, brand monitoring<\/i> Share this post \n<\/a>\n<\/a>\n<\/a>\n<\/span>\n\n\n\n

In part four of this series of posts looking at emerging internet content relating to coronavirus, we explore phishing.<\/p>\n\n\n\n

In times of crisis, cyber criminals invariably take advantage of the growing concerns of the public. In the case of the coronavirus, they have done so by sending phishing emails that play on the fears surrounding the spread of the illness.<\/p>\n\n\n\n

A number of reports have emerged of emails purporting to provide advice or assistance relating to COVID-19, but which are actually hooks to spread malicious content, or to drive people to websites intended to harvest personal details. Many of the phishing emails use the names of trusted organizations such as the World Health Organisation or the U.S. Center for Disease Control and Prevention (CDC) to add credibility to their content. A report published on March 20, 2020 stated that victims of online scams had lost \u00a3960,000 in coronavirus-linked cases since the start of February[1]<\/sup>.<\/p>\n\n\n\n

Some emails encourage the user to open an attachment that may contain malware. Identified cases include examples where attackers run code on a user\u2019s computer or track their movements, steal information through keylogging, or lock files on the user\u2019s device and demand a ransom for their reinstatement. Other instances have been reported of malicious files being distributed through copies of healthcare company or government agency websites[2],[3]<\/sup>.<\/p>\n\n\n\n

Some types of phishing emails drive users to lookalike websites intended to harvest login details; others directly solicit for payments. One particular case asked for Bitcoin donations, allegedly to aid the CDC in the search for a vaccine[4]<\/sup>.<\/p>\n\n\n\n

Fraudulent coronavirus communications may purport to provide benefits. One reported SMS-based scam offered free iPhones to encourage recipients to click a link to a fake site. Other reported scams include emails offering payday loans, tax rebates, insurance schemes or trading advice in response to the crisis, or offering products billed as coronavirus cures[5],[6]<\/sup>.<\/p>\n\n\n\n

Figure 1:<\/strong> Example of a fake government website hosted on a coronavirus-specific domain name, associated with a phishing scam using an SMS message offering a tax refund<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

As the crisis has progressed, there has been a rise in phishing activity over social media, typically involving fake accounts. Given the speed with which content can spread across social media\u2014particularly in the current climate of fear\u2014such scams have the potential to reach large numbers of people in a short time2<\/sup>.<\/p>\n\n\n\n

How to keep your customers safe<\/strong><\/h3>\n\n\n\n

It\u2019s important to keep your customers, as well as your own employees, safe by making them aware of how to spot a phishing email. Tips for spotting phishing emails are generally the same as for most fraudulent campaigns. It may be a good idea to educate your customers as to what to expect from your company, and what a phishing scam may look like. Here are our tips for spotting a phishing email:<\/p>\n\n\n\n

  1. Pay attention to the originating email address and the host domain of any embedded links; fraudsters may attempt to pass off their messages as being from a legitimate organisation (say, company.com) by using variants of the official domain name, such as company.org, or company-safety.com, in order to construct a convincing sender address. Even if an email appears to use the official domain name, it\u2019s possible this information may have been spoofed.

    <\/li>
  2. Hover over links without clicking them. Many fraudulent emails may show the legitimate domain in the visible link text while actually directing elsewhere. Bear in mind that even an email linking to an official site may incorporate a malicious attachment.

    <\/li>
  3. Look out for anomalies in the email text. A phishing email could have: