Cybercriminals are posing as delivery companies and pretending to be affected by the COVID-19 pandemic as a means to trick potential victims into opening malicious emails attachments or revealing credentials on phishing websites.
Spam and phishing schemes that use postal- and shipping-themed lures are nothing new, but the coronavirus outbreak allows attackers to put a fresh, new and urgent spin on their malicious messaging, Kaspersky analyst Tatyana Shcherbakova explained in a blog post.
“Against the backdrop of the pandemic and the large number of genuine package delays, fake sites and e-mails have a good chance of success, especially if you really are expecting a package or if, say, shipment details were sent to your work e-mail and you have reason to think that a colleague might have placed the order,” Shcherbakova wrote.
“Your package has reach our warehouse and due to the coronavirus outbreak, you will need to come to our warehouse to get it, check the attachment for details,” said one recently observed spam email, written in broken English. But watch out: opening this attachme ..
Support the originator by clicking the read the rest link below.
