Security research firms have uncovered despicable acts by hackers taking advantage of the fear over the coronavirus outbreak to spread malware through emails.
According to experts from IBM X-Force Threat Intelligence, hackers have been sending spam emails to potential victims in Japan. The emails claim that the new coronavirus has infiltrated the country, and urge the receiver to open an attached Microsoft Word document to learn more information.
The document, however, will launch a series of commands that will covertly download the Emotet malware into the victim’s computer. Once installed, the malware will allow hackers to steal sensitive information or deliver more dangerous payloads such as ransomware.
“This new approach to delivering Emotet may be significantly more successful, due to the wide impact of the coronavirus and the fear of infection surrounding it,” said IBM in its report, adding that the method of attack will probably be used in the future for emails in other languages.
Hackers utilizing Emotet have previously taken advantage of events and holidays in order to spread the malware, including invites to a Greta Thunberg demonstration, or to Halloween and Christmas parties, according to Bleeping Computer. The hackers are doing it again with the coronavirus outbreak, which has killed more than 305 people and infected over 14,300 around the world.
In addition to Emotet malware, Kaspersky Lab also reported the discovery of various malicious files disguised as documents containing information about the coronavirus. These come in the form of Word documents, PDFs, and MP4 files, with file names that imply that they contain instructions on protection and detection procedures.
“The current number of infected users is not high enough to comprehensively know about the distribution methods of these files,” Kaspersky Lab told PCMag, but said that according to previous cases, the assumption was that they were spread through emails that claimed to be related to the coronavirus.
While health officials around the world race against the clock to contain and address the coronavirus outbreak, people should be wary of misinformation about the international public health emergency. Google has deployed SOS Alerts to make resources about the coronavirus easily accessible, while a dashboard launched by the Center for Systems Science and Engineering at Johns Hopkins brings together data from several official bodies into a single dashboard.
- Hackers using Johns Hopkins’ online coronavirus dashboard to trick victims
- Hackers try to disrupt Health and Human Services Department’s COVID-19 efforts
- Attacks from Chinese hacking group have spiked, U.S. firm says
- Microsoft launches a coronavirus tracker as part of Bing
- Facebook, Amazon, Google teaming up with WHO to stop coronavirus misinformation