Ending Soon! Save 33% on All Access

Coronavirus: Cyber Threats On the Rise Amid Outbreak As countries across the world are fighting to contain the outbreak of the coronavirus disease (COVID-19), cyber threats seem to have taken this as an opportunity to use potential vulnerabilities and the widespread panic to further their malicious intent.

By Debroop Roy

Opinions expressed by Entrepreneur contributors are their own.

You're reading Entrepreneur India, an international franchise of Entrepreneur Media.


As countries across the world are fighting to contain the outbreak of the coronavirus disease (COVID-19), cyber threats seem to have taken this as an opportunity to use potential vulnerabilities and the widespread panic to further their malicious intent.

"While work from home is an inevitable safety measure for saving human lives during the time of this pandemic, government officials have issued warnings about the dangers associated with this new work culture. This is evident with the whopping increase in the number of cyber attacks that are leveraging the panic created," said Pavan Kushwaha, co-founder at cybersecurity firm Kratikal.

According to Kushwaha, around 4,000 website domains related to the virus have been set up since the beginning of the pandemic and almost three per cent of these consist of malware in them.

"Every day, new variants of malware are being released through phishing emails in the name of officials from the World Health Organization," he said.

Another cybersecurity company Lucideus has seen a surge in attacks as well.

"Our SAFE (Security Assessment Framework for an Enterprise) threat intel team has found a number of phishing emails claiming to be from the WHO and other government agencies promising to provide healthcare support to cure coronavirus," said Lucideus co-founder Rahul Tyagi.

Tyagi, citing a separate report, said a wave of 2,500 infections of just two malware strains were delivered in coronavirus-themed emails recently.

Trishneet Arora, founder of TAC Security, said people are offering fake maps that show infected users that require a person to download software to generate fake maps. "In fact, hospital systems were hacked which in-turn had delayed a lot of reports related to COVID-19, endangering the lives of probably millions," he said.

More specifically, a well-known organization in India last week received an email in the name of WHO that was apparently a ransomware variant named Locky, according to Saurabh Saxena, country director for India at global software firm Micro Focus.

"Now that companies have switched to work from home ⁠— using electronic devices and applications more often, the chances of planting a range of malware into devices or playing with the system remotely becomes easier as they may face the possibility of functioning with little or no IT support," said Saxena.

These cyber threats have been taking advantage of vulnerabilities even before countries such as India took preventive measures to contain the spread. Earlier this month, global cybersecurity firm CrowdStrike said it had observed an e-crime actor it tracks, called MUMMY SPIDER, capitalizing on the outbreak with a spam email theme.

"The emails were sent using an email thread-hijacking technique and ultimately led victims to download Emotet malware samples. Thus far, the identified emails have predominantly used Japanese language and spoofed the Kyoto Prefectural Yamashiro Minami Public Health Center," said CrowdStrike's vice president of intelligence Adam Meyers, in a previous statement.

Meyers added that it wasn't only limited to Japanese targets. The company had also seen a China-based group that is tracked under the name of PANDA using lure and decoy content to distribute a remote access tool. This group is known to primarily target government and political entities.

Tips To Protect

According to experts, the easiest way to keep yourself safe from such cyber threat actors is to not click any unidentified links.

Lucideus' Tyagi has some tips that could help identify phishing emails such as being cautious when one sees a suspicious sender address, avoiding emails with generic greetings and signatures such as "Dear valued customer", looking out for poor grammar and misspellings as well as complete avoidance of downloading attachments from senders one doesn't know.

"Additionally, use two factor authentication, VPN services and avoid sharing any sensitive information over email," he said.

Debroop Roy

Former Correspondent

Covering the start-up ecosystem in and around Bangalore. Formerly an energy reporter at Reuters. A film, cricket buff who also writes fiction on weekends.
Business News

Apple iPhone 7 Users May Be Owed a Slice of a $35 Million Settlement — Here's How to Claim Your Share

Previous (and current, no judgment) iPhone 7 users may be entitled to up to $349. The deadline to file a claim is June 3.

Growing a Business

The Power of Networking — 5 Tips on Building Strategic Alliances for Business Growth

Who is on your side? Who has your back? It doesn't have to be lonely at the top. We look at five practical ways you can network to achieve the best for you and your business.


How Corporate Investment Helps Startups Deploy Technology Faster Than Ever

Financial resources, strategic alignment, access to expertise, market validation and operational support make this deployment possible.

Science & Technology

Bad Data: The $3 Trillion-Per-Year Problem That's Actually Solvable

How the right tech can help entrepreneurs make data more accessible and accurate, avoiding massive losses in the process.

Science & Technology

5 Common AI Buzzwords All PR Pros Need to Know

With so many AI buzzwords flying around, it can be difficult for communicators to understand what's what in the field of artificial intelligence. Here's a glossary of the most common AI buzzwords you should know to have a better grasp of this groundbreaking technology.

Business Ideas

63 Small Business Ideas to Start in 2024

We put together a list of the best, most profitable small business ideas for entrepreneurs to pursue in 2024.