The massive amount of information about COVID-19 currently available facilitates crimes like phishing, which take advantage of the social fear of the sometimes mortal virus.
How does it work?
Cybercriminals send emails pretending to be from legitimate organizations with information on the new coronavirus. In those emails, there are files attached supposedly containing data on the most recent developments of the epidemic, for example, but that are, in fact, intended to make you download malicious software to your devices.
The malicious software – malware – may allow for the cybercriminal to take control of your device, registering everything you write or accessing your personal information and financial data, which can lead to identity theft.
How to identify a COVID-19 related phishing email?
These emails can take many forms, but APAV has reunited some recommendations to help you identify them:
-Pay attention to emails which ask for your personal information, like your social security number or your login details on bank websites. Official organizations do not ask for these type of information, so do not answer these emails.
-Check the email adress or link. You can do this without clicking the link, by placing the mouse on top of it. Sometimes it is obvious that the adress or link are not legitimate, but be careful as cybercriminals can create believable imitations of real addresses. Delete the email.
-Pay attention to spelling or gramatical errors, as it is likely that an email which includes them is a phishing one. Delete the email.
-Pay attention to generic greetings such as “Hi”, “Good morning” or “Dear sir/madam”, as most phishing emails will not usually mention your name.
-Avoid emails that give you a sense of urgency. Phishing emails require immediate action, like for you to click a link or give personal information. Instead, delete the email.
APAV is available to help you
COVID-19 has affected the lives of millions of people worldwide. It is impossible to predict its long term impact, but it is possible to take precautions to avoid being a phishing victim.