COVID-19 Related Malware
The FBI has issued a warning of an increase in COVID-19-related fraud schemes. The announcement urges people to be alert to phony messages from the Centers for Disease Control (CDC), phishing emails, and offers of phony COVID-19 treatment. There have been reports of phony email messages that pretend to be from head of World Health Organization and actually place keystroke logger on users' computers, and of a fake COVID-19 vaccine website that tries to steal payment card and other personal data.
Also warn users to be on the alert for phishing campaigns, particularly targeting the elderly, around the pending US financial relief package. These campaigns promise extra social security, investment schemes or COVID-19 relief payments in exchange for bank account information. Also beware of pay-in-advance offers to help victims with services.
Read more in
IC3: FBI Sees Rise in Fraud Schemes Related to the Coronavirus (COVID-19) Pandemic
ZDNet: WHO chief emails claiming to offer coronavirus drug advice plant keyloggers on your PC
Threatpost: Revamped HawkEye Keylogger Swoops in on Coronavirus Fears
Threatpost: Fake Coronavirus 'Vaccine' Website Busted in DoJ Takedown
GovInfosecurity: COVID-19 Phishing Schemes Escalate; FBI Issues Warning
SC Magazine: FBI warns of COVID-19 phishing scams promising stimulus checks, vaccines
Portswigger: Coronavirus fraud: DoJ takes action against website claiming to offer Covid-19 vaccine
ISC: More COVID-19 Themed Malware
ISC: COVID-19 Themed Multistage Malware