Despicable Coronavirus Phishing Attack

Hackers use our Worst Fears Against Us

The latest in a series of coronavirus related phishing attacks may be the most believable yet. Hackers are sending hospital notifications to unsuspecting email recipients notifying them that a friend, colleague, or family member tested positive for COVID-19 and reported you as being exposed. The email states it is your civic responsibility to download and complete the “pre-filled” paperwork to prevent the spread and limit deaths from this virus.

Attachments Contain Sophisticated Malware

When people open the attachment, the malware installs on your machine and compromises it. Various bad things happen at this point. Your computer data is fully encrypted until you pay a ransom. Malware sits in the background stealing and sending your passwords to the hackers to breach more of your accounts. Still, other malware uses your system resources to farm for bitcoins.  No good can come from unsolicited attachments you open!

Spot and Avoid the Phishing Attacks

1. ​Do not click any links in emails you did not expect.
   • Emails containing links to fake COVID or fake Zoom websites are rampant!
2. Be extremely careful when searching for COVID-19 or Coronavirus info. Visit only reputable websites you type in yourself. Here are some good safe ones:
   • Centers for Disease Control (CDC)
   • World Health Organization (WHO)
   • John Hopkins University
3. Generically addressed emails are HUGE red flags.
4. Poor spelling, grammar, and punctuation are all red flags.
5. Emailed attachments are very dangerous!
   • Never open attachments you did not request!
6. An unexpected email urging you to take action is bad.

Congratulations! You read to the end.  You are becoming more cyber-aware, and with awareness, you’re more secure!

Coronavirus Phishing Attack Warnings from Secret Service (4 min video):