Staying Secure in the Time of COVID-19

As the world comes to grips with the coronavirus pandemic, the situation has proven to be a blessing in disguise for threat actors, who've taken advantage of the opportunity to target victims with scams or malware campaigns.

It's amply clear that these attacks exploit coronavirus fears and people's hunger for information about the outbreak. Given the impact on the security of businesses and individuals alike, it's essential to avoid falling victim to online scams and practice good digital hygiene:

• CHA has deployed a secure remote access technology including the use of multi-factor authentication, so that employees can conduct business just as securely from home.

24 x 7 Assistance for Remote Access: 617-665-2468 Option #6

• Watch out for emails and files received from unknown senders (Federal Trade Commission). Most importantly, check a sender's email address for authenticity, don't open unknown attachments or click on suspicious links, and avoid emails that ask them to share sensitive data such as account passwords or bank information.

Trusted sources:

• World Health Organization (WHO)
• Safe Information Link: Cyber-COVID-19 Information
• Review CISA Insights on Risk Management for COVID-19 for more information
• Review tips at the National Cyber Awareness System (CISA) Using Caution with Email Attachments and Avoiding Social Engineering and Phishing Scams for more information.

Current Threats via Email Area:

The coronavirus disease (COVID-19) is being used in a variety of malicious campaigns including email spam, BEC, malware, ransomware, and malicious domains. As the number of those afflicted continue to surge by thousands, campaigns that use the disease as a lure likewise increase.

A notable increase in domain names using the word “corona” has also been observed by FTC and many cybersecurity firms and are considered malicious:

acccorona[.]com

alphacoronavirusvaccine[.]com

anticoronaproducts[.]com

beatingcorona[.]com

beatingcoronavirus[.]com

bestcorona[.]com

betacoronavirusvaccine[.]com

buycoronavirusfacemasks[.]com

byebyecoronavirus[.]com

cdc-coronavirus[.]com

combatcorona[.]com

contra-coronavirus[.]com

corona-armored[.]com

corona-crisis[.]com

corona-emergency[.]com

corona-explained[.]com

corona-iran[.]com

corona-ratgeber[.]com

coronadatabase[.]com

coronadeathpool[.]com

coronadetect[.]com

coronadetection[.]com

Anything from GMX[.]com - Do not GOOGLE this please.

From:

"Department of Health .gov" <Royston.Ristow3648841[@]gmx[.]com>

"Department of Health Goverment" <Laverna.Colop6091567[@]gmx[.]com>

"Department of Health gov" <Marietta.Hermon8547252[@]gmx[.]com>

"Human Services .gov" <Arvel.Burrus1571126[@]gmx[.]com>

"Human Services .gov" <Lorrin.Lichtenfeld9135868[@]gmx[.]com>

"Human Services gov" <Thao.Haake2257741[@]gmx[.]com>

"cdc Goverment" <Carline.Deloera3666657[@]gmx[.]com>

"Supplychain <DUPP57[@]gmx[.]com>

Subject:

Coronavirus Supplies

Coronavirus infected 17 people in your state

Coronavirus infected 10 people in your state

Coronavirus infected 15 people in your state

Coronavirus infected 21 people in your state

Coronavirus infected 9 people in your state