US seizes domains used for COVID-19 vaccine phishing attacks

2020-12-21 12:28

The US Department of Justice has seized two domain names used to impersonate the official websites of biotechnology companies Moderna and Regeneron involved in the development of COVID-19 vaccines.

While almost perfectly cloning the contents of the real sites, the website seized by the federal government were instead used for various malicious purposes including running scams, infecting visitors with malware, and collecting sensitive info in phishing attacks.

Threat actors have also targeted organizations involved in COVID-19 research and in the COVID-19 vaccine cold chain involving storing and delivering it at safe temperatures.

Vaccine research organizations from Canada, UK, and the US have been targeted throughout the year by the Russian state-sponsored APT29 hacking group with the end goal of harvesting intellectual property related to the vaccine's development and testing.

Threat actors affiliated with the People's Republic of China have also been involved in similar attacks according to a joint public service announcement issued by the FBI and DHS-CISA. Last but not least, Microsoft has also taken down domains used in COVID-19-related cybercrime such as harvesting sensitive information, later to be used in Business Email Compromise attacks.

News URL

https://www.bleepingcomputer.com/news/security/us-seizes-domains-used-for-covid-19-vaccine-phishing-attacks/

#attack #covid19 #phishing #US

News URL

Related news