Skip to main content

Looking for Valuant? You are in the right place!

Valuant is now Abrigo, giving you a single source to Manage Risk and Drive Growth

Make yourself at home – we hope you enjoy your new web experience.

Looking for DiCOM? You are in the right place!

DiCOM Software is now part of Abrigo, giving you a single source to Manage Risk and Drive Growth. Make yourself at home – we hope you enjoy your new web experience.

Coronavirus – Cybercriminals Strike in Times of Fear

Eli Dominitz
March 18, 2020
Read Time: 0 min

For cybercriminals, vulnerability and anxiety present opportunity. As the coronavirus (COVID-19) continues to spread around the world, cybercriminals are taking advantage of the widespread fear.

Spike in social engineering and phising campaigns around COVID-19

Over the last several weeks, there has been an increasing wave of social engineering and phishing campaigns targeting countries in North America and Europe. For example, cybercriminals have launched websites to mimic the following healthcare authorities:

  • Centers for Disease Control and Prevention (CDC) in the USA.
  • Ministero della Salute in Italy.
  • Health Canada.

Such look-alike websites contain malicious payloads. Visitors to these websites may unknowingly download malware on their desktop or mobile devices. To generate traffic to these websites, the cybercriminals launch targeted email phishing campaigns that manipulate people into clicking a link. The emails contain subject lines such as “Update - Coronavirus confirmed” or “Important Coronavirus Update”, playing into people’s elevated level of concern.


Real-time coronavirus heat map is a popular phishing tool

A sign of the growing popularity of coronavirus-themed attacks is the emergence of targeted phishing kits on the Dark Web. On several Dark Web marketplaces, hackers are offering for sale default phishing kits that bundle the interactive real-time Coronavirus map from the World Health Organization with a malicious file that functions as a pre-loader (.jar file) for additional malware modules. The following image is of one such Dark Web vendor offering a Coronavirus map phishing kit for $200.

Stay ahead of threats on the dark web.

learn more

This particular cybercriminal shares a YouTube video that demonstrates the features and functionality of the phishing kit, claiming that his phishing method is able to bypass Gmail filters provided that Java is installed on the victim’s device.





Recommendations to stay protected

To prevent your employees and other stakeholders from falling victims to the growing wave of Coronavirus-related cyberattacks, consider taking the following steps:

  1. Educate your employees and other stakeholders about Coronavirus-related social engineering and phishing attacks.
  2. Share approved websites or applications for Coronavirus-related information, and encourage the exclusive use of these resources.
  3. Implement email-filtering rules to carefully review emails containing Coronavirus-related content.

Q6 Cyber’s cutting-edge technology monitors the "Digital Underground" - a vast universe of online sites, marketplaces, communities, and forums where cybercriminals live - to proactively identify and contain emerging threats for your institution. Learn more about Abrigo's partnership with Q6 Cyber as part of their expanding financial crimes suite, enhancing their AML software, BAM+, and their robust fraud scenarios. 

About the Author

Eli Dominitz

Founder & CEO | Q6 Cyber
Eli Dominitz is the Founder & CEO of Q6 Cyber, an e-crime intelligence company based in the USA and Israel. Through a combination of proprietary technology and human analysts, Q6 monitors the “Digital Underground” (DarkWeb, DeepWeb, malware networks and infrastructure) to collect targeted and actionable e-crime intelligence used to proactively

Full Bio

About Abrigo

Abrigo enables U.S. financial institutions to support their communities through technology that fights financial crime, grows loans and deposits, and optimizes risk. Abrigo's platform centralizes the institution's data, creates a digital user experience, ensures compliance, and delivers efficiency for scale and profitable growth.

Make Big Things Happen.