Security News > 2021 > April > US DOJ: Phishing attacks use vaccine surveys to steal personal info
The US Department of Justice warns of phishing attacks using fake post-vaccine surveys to steal money from people or tricking them into handing over their personal information.
"Consumers receive the surveys via email and text message and are told that, as a gift for filling out the survey, they can choose from various free prizes, such as an iPad Pro," the DOJ said.
The DOJ Office of Public Affairs recommends avoiding clicking on links received via text messages or emails claiming to be a vaccine survey if they come from unknown and unverified sources.
Consumers who have received one of these fraudulent phishing emails or text messages using COVID-19 vaccine survey lures are urged to report such incidents to the National Center for Disaster Fraud via the NCDF Web Complaint Form or by calling 866-720-5721.
New York's Department of Financial Services also revealed additional details on an ongoing series of attacks that have already resulted in the theft of private info belonging to hundreds of thousands of New Yorkers.
To protect yourself from identity theft attempts, you can get an Identity Protection PIN ASAP to block identity thieves from filing fraudulent tax returns in your name using your stolen personal information.
News URL
Related news
- How Phishing Attacks Adapt Quickly to Capitalize on Current Events (source)
- Google raps Iran's APT42 for raining down spear-phishing attacks (source)
- Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks (source)
- Cybercriminals exploit file sharing services to advance phishing attacks (source)
- CERT-UA Warns of New Vermin-Linked Phishing Attacks with PoW Bait (source)
- How AitM Phishing Attacks Bypass MFA and EDR—and How to Fight Back (source)
- Novel attack on Windows spotted in phishing campaign run from and targeting China (source)
- Iran Cyber Attack: Fox Kitten Facilitates Ransomware in US (source)
- Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing Attacks (source)
- Australian Organisations Targeted by Phishing Attacks Disguised as Atlassian (source)