Security Awareness – A Few of the Latest Coronavirus Related Scams

Even during this challenging time, there is no question that cyber attack ploys are the same. Threat actors constantly leverage disasters in their campaigns; however, the specific themes and lures abusing coronavirus news and information across various attack techniques continues unabated. Attackers are not letting up, and we must not grow weary in keeping our remote workers aware of the scams using coronavirus that are intended to trick them into clicking on a malicious link or opening a weaponized document. In its weekly COVID-19 Scam Roundup, Tripwire provides some of the latest coronavirus scams, including both cyber and physical concerns. Read more about some of the new scams at Tripwire

In other coronavirus cybersecurity news:

• Cybersecurity journalist Brian Krebs highlights the very real possibility of fraudsters trivially intercepting the Economic Impact Payments (a.k.a., stimulus payments) for U.S. citizens who are not usually required to file a tax return. Krebs also calls attention to another potential fraud storm brewing with these stimulus payments, an app that is scheduled to be released soon (mid-April) called “Get My Payment.” The app is designed as an alternative method to the website to update bank account information, or for those who did not provide direct deposit information in previous years’ returns.
• Criminals embrace the new abnormal – cybersecurity firm F-Secure has a cyber scam roundup of its own.
• Phishing email containing COVID-19 themed signature spoofs DocuSign and Adobe – In its latest Scam Alert, Australian email security firm MailGuard highlights COVID-19 scams spoofing DocuSign and Adobe.