9th April 2020
Jonathan V. Gallo - Attorney (Vandeventer Black LLP)
Cyber criminals are using the unprecedented increase in teleworking to launch attacks against businesses and their employees. This article by MSI's law member Vandeventer Black LLP discusses some recent threats and provides guidance for protecting your business.
Working at her home office, your employee receives an email with the subject line: “Urgent Request” from your company’s CFO informing her that a vendor wants to change their account information so an invoice can be paid as soon as possible.
Knowing businesses are trying to keep cash flow moving during the pandemic, your employee wants to respond quickly. But, remembering company policy, she calls the CFO to confirm. She quickly discovers that the email is fraudulent and avoids what could otherwise have been a bad situation.
Social engineering attacks like the spear-phishing scenario described above are not new; however, recently, hackers are using malware infected coronavirus maps to lure victims. Taking advantage of the public’s desire for up-to-date information on the spread of COVID-19, hackers send out emails urging recipients to click on a link to a website or an interactive map that allows recipients to view real time infection rate heat maps. Unfortunately, the interactive map, or the website itself, is pre-loaded with malware that is then downloaded to recipients’ computers.
Hackers are also registering domain names utilizing commonly searched words such as “pandemic” or “coronavirus” or COVID-19” offering the latest COVID-19 information or an easy way to obtain federal assistance (e.g., “Click here to obtain your federal stimulus check”). When users click on a link they are prompted to “register” and enter an email address, username, password, or other personal information, which is then collected, allowing hackers to run variations of those usernames and passwords to break into commonly accessed websites through “brute force” attacks.
Guidance for Businesses
Headquartered in Norfolk, we are a dynamic business and litigation law firm established in 1883. We focus on responsiveness and results while providing internationally recognized services across a wide variety of legal sectors.
View firm profile
Global accountancy alliance appoints EY business leader https://t.co/V6S6JCpcPE
Thank you for including our news on the appointment of @AndrewDLeck as the new CEO of @MSI_Global https://t.co/JyAft1NCvx
Thank you for covering the news on the appointment of @AndrewDLeck as MSI's new CEO @AccountsTodayUK https://t.co/g23pEZwWLu