sb-au logo
Story image

Trend Micro: COVID-19 related malware and spam on the rise

 Malware and spam related to the Covid-19 pandemic is on the rise globally, according to new research from Trend Micro. 

The cybersecurity solutions firm has released an update on Covid-19 related cyber threats and fraudulent activity, which uncovers global statistics and country threat rankings, garnered from its Trend Micro user base.

The results found that Australia ranked 10th highest in detected email spam connected to Covid-19 from January to March 2020. The United States was identified as the top location for spam and malware detections, and users accessing malicious URLs from January to March.

Globally, Trend Micro has detected an increase in Covid-19 related spam of 220-fold from February to March, and 907,000 total spam messages related to Covid-19 for the same period. The firm detected 737 incidents of malware.

Trend Micro says Covid-19 is being used in a variety of malicious campaigns including email spam, BEC, malware, ransomware, and malicious domains. As the number of those afflicted intensifies, campaigns that use the disease as a lure likewise increase.

“The shift to remote working has been a huge change for many businesses, as they have had to quickly adopt new technology and processes, which in turn has made many vulnerable to cyber-attacks,” explains Dr Jon Oliver, director and data scientist, Trend Micro. 

“Leveraging current or topical events in social engineering strategies is not a new tactic used by cybercriminals. However, with the unpredictability of the pandemic itself, we are seeing a steep rise in exploitations by cybercriminals using the virus as bait, playing into people’s worry, anxiety, and perhaps lowered security during this time," he says. 

"Now more than ever, businesses need to ensure that their employees are being vigilant when it comes to cybersecurity practices. This includes revisiting security training and protocols with staff and ensuring they are securely set up to work from home.”

Most common attacks to be aware of, according to Trend Micro:

 With spam being the top method to deliver attacks on enterprises (65.7% of attacks), Trend Micro identified that the top samples of this are in the form of:

o   Shipment notifications

o   Coronavirus Ministry of Health updates

·       Emotet, a banking malware variant, has been prominently used in coronavirus campaigns

·       The top emerging techniques for email scam proliferation are:

o   Targeting specific countries, including China and Italy

o   Business Email Compromise

o   Cruel ransomware

o   Sextortion related scams

·       Threat actors exploit the public’s need for information about COVID-19 to distribute malware in the form of:

o   Information stealing software disguised through Coronavirus interactive maps

o   Malicious mobile applications disguised as helping to track cases of COVID-19

o   Fake COVID-19 safety portal from the World Health Organisation (WHO)

o   Fake centres for disease and prevention waitlist that looks to gather personal information

·       The effects of COVID-19 have also reached the cybercriminal underground, as popular items are being sold including:

o   COVID-themed phishing, malware, and exploits

o   Toilet paper, N95 masks, ventilators, and other essential supplies

Story image
Kaspersky finds red tape biggest barrier against cybersecurity initiatives
The most common obstacles that inhibit or delay the implementation of industrial cybersecurity projects include the inability to stop production (34%), and bureaucratic steps, such as a lengthy approval process (31%) and having too many decision-makers (23%). More
Download image
Business culture key to delivering effective cybersecurity
Cybersecurity requires not only technology, but a security culture in your workforce. More
Link image
Creating a lean business machine with automation and low-code
Forrester data indicates that process automation was a strategic initiative for many organizations before COVID and remains so after. Catch this webinar to learn more about automation.More
Story image
Global attack volume down, but fraud and cyber threats still going strong
“The move to digital, for both businesses and consumers, has been significant. Yet with this change comes opportunity for exploitation. Fraudsters look for easy targets: whether government support packages, new lines of credit or media companies with fewer barriers to entry."More
Story image
SMBs seeking service providers in face of rising cyber threats
SMBs are struggling with their cybersecurity solutions, with three quarters worried about being the target of a cyberattack in the next six months, and 91% considering using or switching to a new IT service provider if offered a better option.More
Story image
CrowdStrike integrates with ServiceNow program to bolster incident response
As part of the move, users can now integrate device data from the CrowdStrike Falcon platform into their incident response process, allowing for the improvement of both the security and IT operation outcomes.More