Coronavirus scams targeting the public
Scammers targeting the public will try to use fear and concern about the coronavirus pandemic to get victims to drop their guard. Scams that have already been observed include:
- Posing as the World Health Organization or Center for Disease Control and asking recipients to download documents containing safety tips. The files have been found to contain malware designed to keylog and steal credentials.
- Fraudulent offers for face masks, hand sanitizer, and other products whose supplies have been stretched thin.
- Emails from tax authorities offering victims “tax refunds” to help them cope with the coronavirus pandemic. All they had to do was enter their name, address, phone number, mother’s maiden name and bank card number – a clear scam.
- Scammers have been scooping up COVID-19 and coronavirus domains, turning them into malicious malware injection sites. These can even include domains designed to catch common typos, using words like “doronavirus” instead of “coronavirus”.
- Fake coronavirus cures. Renegade doctors repressed by the Chinese or Western governments who already have vaccines available! All you have to do is click on their link and download something or enter your personal information.
- Donate to help find the cure for coronavirus. Most of these requests are bogus. Many of the scams detected have asked victims to donate their money in untraceable bitcoins.
- Fake coronavirus maps. Maps tracking the spread of the pandemic are useful and fascinating, but some scammers are using functioning fake copies of these maps to deploy malware onto victims’ devices.
These are only the scams that have already been detected and documented. As governments bring new tools to bear in the fight against COVID-19, other predatory scams might appear:
- Free coronavirus testing. All you have to do is enter your credit card number or other sensitive personal data. Your best bet is to contact your national public health authority for legitimacy.
- Your coronavirus test results have arrived. Whether or not you’ve actually taken a test, all you need to do is give us your sensitive personal data to find out if you’re infected. If you do take a test, make sure you double-check the correct procedure for receiving your results with the whoever performs the test.
- Your mother has been hospitalized and the hospital’s supplies are running low! You can help by sending untraceable bitcoin funds to this anonymous bitcoin wallet. Socially engineered tactics are rampant in a pandemic.
It’s easy to imagine other scams that might still arise. They work because they prey on the fears that so many of us feel about the coronavirus pandemic. Read on for security tips that will help keep you from falling for these tricks.
Coronavirus scams targeting healthcare workers
It’s bad enough that scammers and hackers are targeting the public during a pandemic. Worse still are the scammers targeting healthcare workers and institutions.
One such scam involved fake emails from the World Health Organization claiming to contain the latest recommendations or directions for healthcare professionals. The attached files instead deployed malware.
Coronavirus scam security tips
So far, a majority of the scams have involved masquerading as various global or national health organizations and institutions. Unfortunately, hackers have no problem undermining these helpful institutions’ communications to turn a quick buck.
- Use the right coronavirus map. This link leads to the John Hopkins coronavirus map that some reports have been saying has been hacked. These reports are not entirely accurate. Though it is theoretically possible for the map to have been hacked, although it's more likely that hackers have made copies of it and are sending it to victims as a downloadable app loaded with malware. Simply view the legitimate map in your browser.
- Don’t download anything (and be careful around links as well). It’s difficult to imagine a scenario where an organization like the WHO would need you to download safety tips rather than simply including them in its email/SMS or on its site. So don’t download anything you aren’t 100% sure of.
- Keep a cool head. Yes, masks and hand sanitizer are running low in many places around the world. But imagine they weren’t. Would you buy some from a random SMS asking you to provide your credit card info? You’d probably find a reputable dealer or go to a local store, not an online vendor selling at a ridiculous markup.
- If it sounds too good to be true, it probably is. What are the odds that the secret cure to COVID-19 just landed in your inbox without anyone else in the world knowing about it? This stands for any scam, whether or not it uses the coronavirus to trick you.
- Make sure you donate to the right place. Donating money to help fund the search for a treatment or vaccine is a noble cause. Just make sure you’re donating to a reputable organization.
- Carefully examine any URL or email address you see. Any URL you see with a typo while looking for info on the coronavirus is a dead giveaway – it’s a scammer hoping you don’t notice the mistake. The same goes for links you might want to click on or any email you get. Sometimes, even email senders can be spoofed. If the email contains a link, try going to the website yourself and finding what you need instead of clicking.
Online security starts with a click.
Stay safe with the world’s leading VPN