Get All Access for $5/mo

Coronavirus: Cyber Threats On the Rise Amid Outbreak As countries across the world are fighting to contain the outbreak of the coronavirus disease (COVID-19), cyber threats seem to have taken this as an opportunity to use potential vulnerabilities and the widespread panic to further their malicious intent.

By Debroop Roy

Opinions expressed by Entrepreneur contributors are their own.

You're reading Entrepreneur India, an international franchise of Entrepreneur Media.

Shutterstock

As countries across the world are fighting to contain the outbreak of the coronavirus disease (COVID-19), cyber threats seem to have taken this as an opportunity to use potential vulnerabilities and the widespread panic to further their malicious intent.

"While work from home is an inevitable safety measure for saving human lives during the time of this pandemic, government officials have issued warnings about the dangers associated with this new work culture. This is evident with the whopping increase in the number of cyber attacks that are leveraging the panic created," said Pavan Kushwaha, co-founder at cybersecurity firm Kratikal.

According to Kushwaha, around 4,000 website domains related to the virus have been set up since the beginning of the pandemic and almost three per cent of these consist of malware in them.

"Every day, new variants of malware are being released through phishing emails in the name of officials from the World Health Organization," he said.

Another cybersecurity company Lucideus has seen a surge in attacks as well.

"Our SAFE (Security Assessment Framework for an Enterprise) threat intel team has found a number of phishing emails claiming to be from the WHO and other government agencies promising to provide healthcare support to cure coronavirus," said Lucideus co-founder Rahul Tyagi.

Tyagi, citing a separate report, said a wave of 2,500 infections of just two malware strains were delivered in coronavirus-themed emails recently.

Trishneet Arora, founder of TAC Security, said people are offering fake maps that show infected users that require a person to download software to generate fake maps. "In fact, hospital systems were hacked which in-turn had delayed a lot of reports related to COVID-19, endangering the lives of probably millions," he said.

More specifically, a well-known organization in India last week received an email in the name of WHO that was apparently a ransomware variant named Locky, according to Saurabh Saxena, country director for India at global software firm Micro Focus.

"Now that companies have switched to work from home ⁠— using electronic devices and applications more often, the chances of planting a range of malware into devices or playing with the system remotely becomes easier as they may face the possibility of functioning with little or no IT support," said Saxena.

These cyber threats have been taking advantage of vulnerabilities even before countries such as India took preventive measures to contain the spread. Earlier this month, global cybersecurity firm CrowdStrike said it had observed an e-crime actor it tracks, called MUMMY SPIDER, capitalizing on the outbreak with a spam email theme.

"The emails were sent using an email thread-hijacking technique and ultimately led victims to download Emotet malware samples. Thus far, the identified emails have predominantly used Japanese language and spoofed the Kyoto Prefectural Yamashiro Minami Public Health Center," said CrowdStrike's vice president of intelligence Adam Meyers, in a previous statement.

Meyers added that it wasn't only limited to Japanese targets. The company had also seen a China-based group that is tracked under the name of PANDA using lure and decoy content to distribute a remote access tool. This group is known to primarily target government and political entities.

Tips To Protect

According to experts, the easiest way to keep yourself safe from such cyber threat actors is to not click any unidentified links.

Lucideus' Tyagi has some tips that could help identify phishing emails such as being cautious when one sees a suspicious sender address, avoiding emails with generic greetings and signatures such as "Dear valued customer", looking out for poor grammar and misspellings as well as complete avoidance of downloading attachments from senders one doesn't know.

"Additionally, use two factor authentication, VPN services and avoid sharing any sensitive information over email," he said.

Debroop Roy

Former Correspondent

Covering the start-up ecosystem in and around Bangalore. Formerly an energy reporter at Reuters. A film, cricket buff who also writes fiction on weekends.
News and Trends

"45% of All Ongoing Hydropower Projects in India are Ours": Patel Engineering

Patel Engineering reported a turnover of INR 4,400 crore in the last fiscal year, with a projected 10 per cent growth for the current year.

Side Hustle

'Hustling Every Day': These Friends Started a Side Hustle With $2,500 Each — It 'Snowballed' to Over $500,000 and Became a Multimillion-Dollar Brand

Paris Emily Nicholson and Saskia Teje Jenkins had a 2020 brainstorm session that led to a lucrative business.

News and Trends

Broadcom Stock Soars on AI Growth Outlook

Broadcom's next-generation AI chips, built with advanced 3-nanometer technology, are set to debut in the spring

Leadership

Should I Stay or Should I Go? 8 Key Points to Navigate the Founder's Dilemma

Here are eight key signs that help founders determine whether to persevere or let go.

Business Ideas

63 Small Business Ideas to Start in 2024

We put together a list of the best, most profitable small business ideas for entrepreneurs to pursue in 2024.

News and Trends

5 Things to Know About India's Chess Pride, Gukesh Dommaraju

He is not only inspired by Dhoni but also relies on a coach from Dhoni's cricketing era to help him prepare mentally.