Security News > 2021 > March > COVID-19 Vaccine Spear-Phishing Attacks Jump 26 Percent
Between October and January the average number of COVID-19 vaccine-related spear-phishing attacks grew 26 percent, said Barracuda Networks researchers.
The types of cybercriminal activity varies, from sending malicious emails that purport to be from the Centers for Disease Control and Prevention, to posting advertisements on underground forums touting vaccine doses for sale.
"Vaccine-related phishing emails impersonated a well-known brand or organization and included a link to a phishing website advertising early access to vaccines, offering vaccinations in exchange for a payment, or even impersonating health care professionals requesting personal information to check eligibility for a vaccine," said Barracuda Networks researchers.
Kaspersky researchers who found advertisements for the vaccines across 15 underground marketplaces on Thursday warned that there's no indication that these vaccine doses are legitimate.
Phishing attacks and other malicious activity relating to the pandemic in general has been ongoing since COVID-19 took hold across many countries last year - including attacks that take advantages of lifting coronavirus lockdowns as well as financial relief scams.
Staying suspicious of vaccine-related emails: Watch for classic phishing red flags in these emails, such as misspellings in the email body, or sketchy domains.
News URL
https://threatpost.com/covid-19-vaccine-spear-phishing-attacks/164489/
Related news
- Google raps Iran's APT42 for raining down spear-phishing attacks (source)
- How Phishing Attacks Adapt Quickly to Capitalize on Current Events (source)
- Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks (source)
- Cybercriminals exploit file sharing services to advance phishing attacks (source)
- Blind Eagle Hackers Exploit Spear-Phishing to Deploy RATs in Latin America (source)
- CERT-UA Warns of New Vermin-Linked Phishing Attacks with PoW Bait (source)
- How AitM Phishing Attacks Bypass MFA and EDR—and How to Fight Back (source)
- Novel attack on Windows spotted in phishing campaign run from and targeting China (source)
- Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing Attacks (source)
- Chinese national accused by Feds of spear-phishing for NASA, military source code (source)