Threat actors exploit the interest in the COVID19 outbreak while infections increase worldwide, experts are observing new campaigns on a daily bases.
Below a list of attacks detected this week.
March 30, 2020 – Your colleague was infected with COVID19, this is the latest phishing lure
Security experts uncovered a new COVID19-themed phishing campaign, the messages inform recipients that they have been exposed to the virus.
March 30 – Zeus Sphinx spam campaign attempt to exploit Covid19 outbreak
The Zeus Sphinx malware is back, operators are now spreading it exploiting the interest in the COVID19 outbreak.
March 30 – Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware
Online communication platforms such as Zoom are essential instruments at the time of COVID19 outbreak, and crooks are attempting to exploit their popularity.
April 2 – Crooks use tainted Zoom apps to target users at home due to Coronavirus outbreak
Crooks target Android users working from home due to the COVID19 outbreak with a Trojanized version of the popular video messaging app Zoom.
April 4 – New Coronavirus-themed campaign spread Lokibot worldwide
Researchers spotted a new COVID19-themed attack, the messages pretend to be sent from the World Health Organization to deliver Lokibot infostealer.
The number of attacks continues to increase on a daily base, both cybercrime organizations and nation-state actors are using COVID19 as a lure for their campaign.
If you are interested in COVID19-themed attacks from February 1 give a look at the following posts:
[adrotate banner=”9″] | [adrotate banner=”12″] |
(SecurityAffairs – malware, COVID19)
[adrotate banner=”5″]
[adrotate banner=”13″]
INTERPOL announced that a joint operation code-named Operation Secure took down 20,000+ malicious IPs/domains tied…
A critical remote code execution (RCE) vulnerability in Roundcube was exploited days after patch, impacting…
A vulnerability could allow recovery of the phone number associated with a Google account by…
Hackers breached Texas DOT (TxDOT), stealing 300,000 crash reports with personal data from its Crash…
SAP fixed a critical NetWeaver flaw that let attackers bypass authorization and escalate privileges. Patch…
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds RoundCube Webmail and Erlang Erlang/OTP SSH server flaws…
This website uses cookies.