IBM’s X-Force discovered the phishing scheme. The emails are being sent to people in personalized messages, addressing the recipient by a username found in the email address.
If a person opens the spam email and clicks on the attachment, malware is spread onto the computer. The HawkEye malware is capable of stealing credentials from the computer.
“It is remarkable how threat actors play with the fears and hopes of their potential victims. Speaking of prevention drugs and cures in an email that is spoofed to appear directly from the director of the WHO, in this current situation is expected to be highly successful,” the IBM X-Force team concluded.
More articles on cybersecurity:
State-by-state breakdown of ransomware attacks on healthcare providers
5 recent data breaches caused by human error
Indiana hospital alerts 2,600 patients of human error data breach
