While the whole world is actively fighting the coronavirus pandemic, attackers are resorting to new ways to steal money and data from users. Cybercriminals are distributing a fake Android tracker to track coronavirus infections.
Specialists from DomainTools have recorded active registration of domain names in connection with the coronavirus.“Cybercriminals like to exploit people when they are at their most vulnerable. They use dramatic events that cause people to be emotional or fearful to drive their profits. Any time there are major news cycles happening on a topic that stirs a strong reaction, cybercriminals will not be far behind. The Coronavirus is no different. Shortly after the first cases were confirmed, DomainTools’ researchers observed a minor uptick in domain names leveraging Coronavirus and COVID-19. These registrations have peaked significantly in the past few weeks and many of them are scams”, — write DomainTools researchers.
For example, the coronavirusapp website offers users to install a special Android application to track outbreaks of infection.
According to the site, the app certified the World Health Organization (WHO) and the US Centers for Disease Control and Prevention (CDC). It also claims that the application allegedly received more than 6 million reviews and has a rating of 4.4 stars.
However, the program is actually ransomware called CovidLock. After installation, the application requests various permissions, including access to the lock screen, and then changes the password and requires a ransom of $100 in bitcoins from victims for access to the device.
Attackers do not pay attention to universal problems and global risks – they want to cash in on you here and now: by the way, last year was registered a phishing record and cybercriminals will not stop there.
Be sure to only use trusted information sources from government and research institution’s websites. Don’t click on anything in your email that’s health related. In general, be sure to follow all of the basic phishing recommendations — be aware that people are trying to capitalize on fear here.
Ensure that you download Android applications only from the Google Play store. There is a much higher risk of downloading malware from untrusted 3rd party stores.
User Review
( votes)
One Comment