Spread of Coronavirus-Themed Cyberattacks Persists with New Attacks

2020-03-06 18:03

On Tuesday, researchers reported two malware campaigns connected to the coronavirus: One that uses a phishing email to spread Remcos RAT and malware payloads and the other using a Microsoft Office document to drop a backdoor onto a victim's computer.

One campaign is in the form of a phishing email with a PDF offering coronavirus safety measures, according to research from ZLab-Yoroi Cybaze.

Researchers at Cofense, on Wednesday, said they observed a new phishing campaign that pushes fake messages from The Centers for Disease Control that the coronavirus has "Officially become airborne" and there "Have been confirmed cases of the disease in your location."

The email, which researchers said is a "Good forgery," contains a phishing kit that tempts recipients to click on a URL that appears to be a legitimate CDC link to learn more about the localized coronavirus threat.

Threat actors began leveraging news of the coronavirus to spread malware in January through a spate of malicious, botnet-driven emails that used the virus as a theme, according to researchers from IBM X-Force and Kaspersky.

News URL

https://threatpost.com/coronavirus-themed-cyberattacks-persists/153493/

#attack #coronavirus #cyberattack