Catching the virus: Europol report on cybercrime and disinformation amid the COVID-19 pandemic

During the COVID-19 pandemic, criminals have been quick to seize opportunities to exploit the crisis by adapting their modi operandi and engaging in new criminal activities. Cybercriminals have been among the most adept at exploiting the pandemic. The threat from cybercrime activities during the crisis is dynamic and has the potential to increase further. With a record number of potential victims staying at home and using online services across the EU, the ways for cybercriminals seeking to exploit emerging opportunities and vulnerabilities have multiplied.

Europol has been monitoring the impact of the COVID-19 pandemic on the cybercrime landscape since the beginning and has published an updated threat assessment of potential further developments in this crime area.

Among the forms of cybercrime analysed in the report are:
https://www.europol.europa.eu/newsroom/news/catching-virus

Also see:

‘Zoom is malware’: why experts worry about the video conferencing platform
As coronavirus lockdowns have moved many in-person activities online, the use of the video-conferencing platform Zoom has quickly escalated. So, too, have concerns about its security.
https://www.theguardian.com/technology/2020/apr/02/zoom-technology-security-coronavirus-video-conferencing

Zoom says engineers will focus on security and safety issues
Zoom, the hit video conferencing platform, will freeze new feature development and shift all engineering resources on to security and safety issues, its founder has said..
https://www.theguardian.com/technology/2020/apr/02/zoom-says-engineers-will-focus-on-security-and-safety-issues

‘War Dialing’ Tool Exposes Zoom’s Password Problems
As the Coronavirus pandemic continues to force people to work from home, countless companies are now holding daily meetings using videoconferencing services from Zoom. But without the protection of a password, there’s a decent chance your next Zoom meeting could be “Zoom bombed” — attended or disrupted by someone who doesn’t belong. And according to data gathered by a new automated Zoom meeting discovery tool dubbed “zWarDial,” a crazy number of meetings at major corporations are not being protected by a password.
https://krebsonsecurity.com/2020/04/war-dialing-tool-exposes-zooms-password-problems/

Spearphishing Campaign Exploits COVID-19 To Spread Lokibot Infostealer
Researchers have discovered threat actors once again capitalizing on the COVID-19 pandemic and current attention on the World Health Organization (WHO) with a new spearphishing email designed to spread the LokiBot trojan sent using the WHO trademark as a lure.
https://threatpost.com/spearphishing-campaign-exploits-covid-19-to-spread-lokibot-infostealer/154432/

Cybercriminals targeting critical healthcare institutions with ransomware
Hospitals and other institutions on the front lines of the fight against the coronavirus facing unprecedented physical dangers are now also facing another threat from cybercriminals.
https://www.interpol.int/News-and-Events/News/2020/Cybercriminals-targeting-critical-healthcare-institutions-with-ransomware

Supporting the fight against cybercrime: The map to the road less traveled: CSIRTs & Law Enforcement cooperation
In an effort to further enhance the cooperation between the CSIRTs, especially national and governmental, and law enforcement agencies (LEAs), ENISA has carried out a survey and analysis of significant issues at hand that are likely to inhibit cooperation. As ENISA usually takes a holistic view of the policy area of CSIRT and LEA cooperation, interactions with the judiciary have also been taken into consideration to the extent possible.
https://www.enisa.europa.eu/news/enisa-news/supporting-the-fight-against-cybercrime

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.