After global phenomena, natural disasters or pandemics like COVID-19 occur, there is often an increase of opportunistic criminal activity on the internet. The bad guys are preying on your fear and sending all sorts of scams related to the Coronavirus (COVID-19).
…with the purpose of infecting your device with malware. Watch out for sites such as Coronavirus(.)com or Corona -virus-Map(.)com. Since January there have been thousands of websites registered containing the wordʻcoronaʻand many of those are suspicious. Some of these websites distribute malware.
…trying to grab your curiosity by using conspiracy themed catchphrases, such as “censored”, to try and sell information (paid-for videos) or goods that are now in high demand, such as masks, hand sanitizers or vitamins, for example.
…that appear to come from organizations such as the CDC (Centers for Disease Control) or the WHO (World Health Organization). The scammers have crafted emails that appear to come from these sources but they actually contain malicious phishing links or dangerous attachments. There are also emails that claim to have a “new” or “updated” list of cases of Coronavirus in your area. These emails contain dangerous links.
Below are some examples of the types of scams you should be on the lookout for:
…emails and websites that ask for charity donations for studies, doctors, or victims that have been affected by the COVID-19 Coronavirus. Scammers often create fake charity emails after global disasters or pandemics like the COVID-19 outbreak.
Fake Internal HR or IT Communication
…such as coronavirus surveys impersonating your HR or IT department -the objective here is to steal your username and password. To access the ʻdocumentʻ or ʻsurveyʻ,the recipient has to provide their Office 365 credentials on a fake site – thus compromising their Office 365 account.
Remain cautious! Protect yourself from scams like this:
Never click on links or open attachments from an email that you weren’t expecting.
If you receive a suspicious email that appears to come from an official organization such as the WHO or the South African Department of Health, report the email to your security team to double-check.
If you want to make a charitable donation, go to the charity website of your choice to submit your payment. Type the charity’s web address in your browser instead of clicking on any links in emails or other messages.
Finally, don’t trust anyone knocking on your door, dressed up as a health official wanting to perform COVID-19 tests – they are just out to rob you!
Thank you to our friends at KnowBe4 for providing this content.