Scam alert: Now hackers are using coronavirus panic to spread malware

Ever "innovative" cyber-criminals have not waited long to try and exploit the coronavirus for their own gain - instead, they're using widespread panic to spread a different kind of virus.

Coronavirus scams exploit people's concerns for their health and safety in an attempt to pressure them into being tricked, according to Tatyana Scherbakova, security researcher at global cybersecurity company Kaspersky. 

The company has already detected emails offering products such as masks or fake offerings of vaccines, which in fact lead to phishing websites.

Already, 2 673 cybercrime attempts have been detected involving fake coronavirus solutions, and the distribution of 513 unique scam files. The latest ones detected purport to be from the World Health Organisation (WHO).

"Cybercriminals recognise the important role WHO has in providing trustworthy information about the coronavirus. Users receive emails allegedly from the WHO, which supposedly offer information about safety measures to be taken to avoid infection," says Scherbakova.

'Realistic'

"Once a user clicks on the link embedded in the email, they are redirected to a phishing website and prompted to share personal information, which ends up in the hands of cybercriminals. This scam looks more realistic than other examples we have seen lately."

The Kaspersky researchers have detected malicious pdf, mp4 and docx files masquerading as items relating to the coronavirus. The names of the files imply that they contain video instructions on how to protect yourself from the virus, updates on the threat and even virus detection procedures.

"We would encourage companies to be particularly vigilant at this time and ensure employees who are working at home exercise caution," says David Emm, principal security researcher at Kaspersky.

Tips:

If you are an individual, Kaspersky advises that you carefully study the content of emails you receive and only trust reliable sources. Do not download files with an .exe extention.

If you are a business, provide a VPN (a private network that uses a public network) for staff to connect securely to the corporate network.

All corporate devices – including mobiles and laptops – should be protected with appropriate security software.

International cloud-based email management company Mimecast says it too is tracking emails of cyber criminals trying to capitalise on the virus by attempting malicious email attacks.

"There are currently multiple malicious emails circulating to unsuspecting end-users via business and personal email. Cybercriminals exploit these uncertain times by masking malicious activity behind seemingly innocent and helpful communication," the company warns.

"Businesses and consumers need to take extra care during times of uncertainty to only open trusted emails and take care not to click on malicious links."

* Compiled by Carin Smith

ZAR/USD
17.42
(+0.12)
ZAR/GBP
22.74
(+0.15)
ZAR/EUR
20.57
(+0.07)
ZAR/AUD
12.44
(+0.49)
ZAR/JPY
0.16
(+0.27)
Gold
1950.60
(+1.58)
Silver
27.27
(+6.47)
Platinum
959.00
(+3.17)
Brent Crude
45.32
(+2.09)
Palladium
2169.50
(+1.68)
All Share
57419.46
(+0.00)
Top 40
53082.08
(-0.08)
Financial 15
10227.06
(+0.86)
Industrial 25
75743.15
(-0.61)
Resource 10
59161.88
(+0.29)
All JSE data delayed by at least 15 minutes morningstar logo
Company Snapshot
Voting Booth
Do you think it was a good idea for the government to approach the IMF for a $4.3 billion loan to fight Covid-19?
Please select an option Oops! Something went wrong, please try again later.
Results
Yes. We need the money.
11% - 988 votes
It depends on how the funds are used.
74% - 6581 votes
No. We should have gotten the loan elsewhere.
15% - 1376 votes
Vote