Current Phishing Attacks and Trends

All the latest on the continuing risk from cybercriminals capitalizing on current events.

Keep Safe from Coronavirus Email Attacks

Over the coming days, we’ll continue to post advice, examples, and information to help you better manage the increased risk COVID-19 represents. If you want to be sure to receive these updates, sign up for our Coronavirus/COVID-19 communications here.

Cybercriminals have long taken advantage of times of crisis, capitalizing on public attention and fears. The Coronavirus / COVID-19 pandemic is a perfect recipe for exploitation – fear, personal interest, worldwide attention, disruptions to daily life and work habits, and unusual business practices and communication patterns. Threats have evolved as growing concern over the global health crisis spikes, and malicious actors are putting in overtime trying to benefit from these fears.

Check out GreatHorn’s resources for more information on how to protect yourself and your organization from COVID-19/ Coronavirus phishing attacks.

Workforce Protection Series: Best Practices to Enable Your Remote Workforce

Securing Zoom When You’re All Remote

Keeping Each Other Safe (from Phishing) in the Era of COVID-19

The Rise of COVID-19/Coronavirus Phishing Schemes

Managing COVID-19 Phishing Risks with a Remote Workforce

Think Before You Click.

We’ve seen malicious actors rely heavily on impersonation tactics (“official” CDC announcements and HR / executive communications, for example) and either masked or lookalike URLs (CDC, WHO, OneDrive, etc.), typically seeking credentials or either confidential or financial information.

Here are just a couple of the examples that we’ve seen:

Zoom Conference Call Phishing

Phishers are taking advantage of this time of confusion. In the below example, three different phishing techniques are combined:

  1. Sense of Urgency
  2. Normal-looking Zoom URL
  3. Microsoft Login Spoof

This is especially dangerous because credential theft, force-install of viruses, keystroke logging, and remote control software can all stem from this singular attack.

The Rise of COVID-19 Phishing Schemes

With 12 weeks of data behind us, we can see how these threats have evolved as growing concern over the global health crisis spiked.

Cybercriminals are taking advantage of the disruptions to daily life and the increasingly unusual business practices and communication patterns.
In April, there was a 22% decrease in COVID threats compared to all emails.
At the conclusion of April, COVID threats make up 1.8% of all emails.