The COVID-19 vaccination campaign has been used as a slogan to steal data and infect computers. The emails they go through are used by cyber criminals by immunity manufacturers and even the Ministry of Health. The idea is to get victims to fill in information about fake websites and install malware on your devices.
According to Kaspersky, one of the scams noticed in Brazil is aimed at stealing data from corporate users. Victims receive fake emails inviting them to schedule the alleged vaccination. The message indicates that, to register, they must click on a link that takes them to a form, where they have to enter personal data and passwords.
Phishing campaigns also use the names of vaccine manufacturers, such as the US pharmaceutical company Pfizer. In emails, cybercriminals invite users to participate in a search for immunization devices. The text indicates that test participants will receive rewards.
To participate in an alleged survey and referral to a bonus, users must complete a survey. In some cases, there is even a request for payment that will guarantee the prize. The tricks also use the names of Chinese companies, which are said to target users to offer items such as inoculation syringes.
“Once the vaccination programs were launched, the spammers adopted this process as bait to capture the personal data of the victims. It is important to remember that although such offers may appear attractive, the likelihood of them being legitimate is zero. Therefore, the user can avoid losing data or money. In some cases, if you are always on the lookout for lucrative online offers, “says Fabio Asolini, Kaspersky’s chief security analyst.
The coup uses COVID-19 to spread the banking trojan
The scams also include emails on behalf of the Ministry of Health to attract victims. As indicated by ESET, the message prompts the person to fill out a registration form to receive an SMS with the day and time that the vaccination is supposed to take place. However, the practice aims to install a Trojan horse on the device, a malicious file capable of collecting data from your bank account.
When clicking on the link in the email, the user is prompted to download the installation file. With it, the device downloads another file responsible for installing the Mekotio Banking Trojan. This malicious file, created about five years ago, aims to collect banking data by showing pop-ups that mimic bank pages.
Experts warn that the Ministry of Health and vaccine manufacturers do not communicate with citizens to deal with vaccination. Emails often also contain signs that they are not authentic. Among the tags are the email address that does not end in “gov.br” and the links used in messages that do not lead to government websites.
“Writer. Analyst. Avid travel maven. Devoted twitter guru. Unapologetic pop culture expert. General zombie enthusiast.”