Scam alert: Now hackers are using coronavirus panic to spread malware | Fin24
  • Covid-19 Money Hub

    The hub will help answer your business and money questions during the coronavirus crisis.

  • Coronavirus Funding

    Could a R100 billion social impact bond help fund SA's Covid-19 interventions?

  • Money Clinic

    I have invested R1m to be paid out monthly, I have not received any during Covid-19. What can I do?


Scam alert: Now hackers are using coronavirus panic to spread malware

Mar 11 2020 18:16

Ever "innovative" cyber-criminals have not waited long to try and exploit the coronavirus for their own gain - instead, they're using widespread panic to spread a different kind of virus.

Coronavirus scams exploit people's concerns for their health and safety in an attempt to pressure them into being tricked, according to Tatyana Scherbakova, security researcher at global cybersecurity company Kaspersky. 

The company has already detected emails offering products such as masks or fake offerings of vaccines, which in fact lead to phishing websites.

Already, 2 673 cybercrime attempts have been detected involving fake coronavirus solutions, and the distribution of 513 unique scam files. The latest ones detected purport to be from the World Health Organisation (WHO).

"Cybercriminals recognise the important role WHO has in providing trustworthy information about the coronavirus. Users receive emails allegedly from the WHO, which supposedly offer information about safety measures to be taken to avoid infection," says Scherbakova.


"Once a user clicks on the link embedded in the email, they are redirected to a phishing website and prompted to share personal information, which ends up in the hands of cybercriminals. This scam looks more realistic than other examples we have seen lately."

The Kaspersky researchers have detected malicious pdf, mp4 and docx files masquerading as items relating to the coronavirus. The names of the files imply that they contain video instructions on how to protect yourself from the virus, updates on the threat and even virus detection procedures.

"We would encourage companies to be particularly vigilant at this time and ensure employees who are working at home exercise caution," says David Emm, principal security researcher at Kaspersky.


If you are an individual, Kaspersky advises that you carefully study the content of emails you receive and only trust reliable sources. Do not download files with an .exe extention.

If you are a business, provide a VPN (a private network that uses a public network) for staff to connect securely to the corporate network.

All corporate devices – including mobiles and laptops – should be protected with appropriate security software.

International cloud-based email management company Mimecast says it too is tracking emails of cyber criminals trying to capitalise on the virus by attempting malicious email attacks.

"There are currently multiple malicious emails circulating to unsuspecting end-users via business and personal email. Cybercriminals exploit these uncertain times by masking malicious activity behind seemingly innocent and helpful communication," the company warns.

"Businesses and consumers need to take extra care during times of uncertainty to only open trusted emails and take care not to click on malicious links."

* Compiled by Carin Smith

coronavirus  |  health  |  cybercrime  |  scams


Company Snapshot

Voting Booth

How has Covid-19 impacted your financial position?

Previous results · Suggest a vote