silversurfer
Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
- Aug 17, 2014
- 10,154
Full report by Check Point:Security experts are warning of a 30% spike in COVID-19-themed cyber-attacks over the past two weeks as hackers continue to spoof trusted brands and organizations.
Check Point revealed an average of 192,000 coronavirus-related cyber-attacks per week over the past fortnight — the vast majority of which were phishing emails. Some, like a WHO-themed phishing email purporting to be an ‘urgent letter’ containing information on the first human vaccine test, contain password-stealing keylogging malware. Others seen by the vendor are spoofed to appear as if sent by the WHO or UN and are extortion emails demanding Bitcoin payments.
Check Point also observed a surge in domain registrations as part of ongoing coronavirus-related phishing campaigns.
Nearly 37% of Zoom-related domains were registered in the past three weeks, it said. Of the 2449 detected, 1.5% were malicious and 13% categorized as suspicious. Similar lures include fake Microsoft Teams and Google Meets links/domains. In total, Check Point claimed to have detected nearly 20,000 new COVID-19 registrations in the past three weeks, over a fifth (22%) of the total spotted so far since the beginning of the outbreak. Of this most recent batch, 2% are malicious and 15% suspicious.
The vendor urged users to beware of lookalike domains with spelling errors and unfamiliar senders, to not reuse passwords across accounts and to order goods only from authentic sources.
Coronavirus cyber-attacks update: beware of the phish - Check Point Software
New phishing campaigns discovered impersonating the WHO and popular conferencing platforms, to steal sensitive information Check Point has seen 192,000
blog.checkpoint.com