Security News > 2020 > April > Coronavirus ‘Financial Relief’ Phishing Attacks Spike
Researchers are warning of an upward surge in social-engineering lures in malicious emails that promise victims financial relief during the coronavirus pandemic.
This latest trend shows cybercriminals continuing to look to the newest developments in the coronavirus saga as leverage for phishing campaigns, targeted emails spreading malware and more.
The message asks recipients to verify their email accounts through a malicious link that directs them to a phishing page.
Researchers pointed to similar phishing campaigns in Australia and the U.K. In Australia, a campaign was discovered using emails claiming to be from a major Australian newspaper and using the subject line, "Government announces increased tax benefits in response to the coronavirus." These email messages contain a PDF attachment with an embedded URL that leads to a phishing page, where victims are asked to input their Microsoft OneDrive credentials.
These emails, sent with a subject line of "COVID 19 : Relief Compensation," tells recipients they have been "Randomly selected to be compensated financially due to the outbreak of the COVID-19 Epidemic outbreak" and asks them to learn more by clicking on an fake Microsoft Excel-branded attachment that gathers emails and passwords.
News URL
https://threatpost.com/coronavirus-financial-relief-phishing-spike/154358/
Related news
- Australian Organisations Targeted by Phishing Attacks Disguised as Atlassian (source)
- Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials (source)
- Andariel Hacking Group Shifts Focus to Financial Attacks on U.S. Organizations (source)
- DOJ, Microsoft seize 107 domains used in Russia's Star Blizzard phishing attacks (source)
- GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks (source)
- Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack (source)
- Midnight Blizzard Escalates Spear-Phishing Attacks On Over 100 Organizations (source)
- Windows infected with backdoored Linux VMs in new phishing attacks (source)