Check Point Analysts reported about increased activity of cybercriminals in connection with the weakening of the regime of self-isolation: in June, the average number of attacks per week increased by 18% compared to May of this year. It is noted that the number of cyberattacks related to the theme of coronavirus decreased by 24% compared with the previous month.
Researchers write that the number of phishing attacks related to the topic of COVID-19 is significantly higher in those regions where the self-isolation mode has not been canceled. So, in Europe and North America, where business is returning to normal, there is a sharp decrease in the number of attacks associated with coronavirus. At the same time, countries in Latin America and Africa that are still struggling with the epidemic are seeing frequent attacks involving COVID-19.
Despite the fact that the number of “coronavirus” attacks is decreasing, fraudsters use other large informational campaigns for their malicious campaigns. A striking example of this is the global protests associated with the Black Lives Matter (BLM) movement.
In early June, when protests reached their peak, Check Point researchers discovered the proliferation of BLM-related spam campaigns. Attackers attached a text document with the following topics to their letters: Give your opinion confidentially about Black Lives Matter, Leave a review anon about Black Lives Matter (“Leave an anonymous review about Black Lives Matter”) , Vote anonymous about Black Lives Matter ("Vote anonymously about Black Lives Matter"). And in each of these files, the Trickbot banking trojan was hidden.
“If you receive a letter from an unknown sender, be careful. By opening an attachment or clicking on the link inside, you can automatically download a malicious file. Now we are witnessing a tendency to use domain names such as Microsoft Office 365 for phishing attacks. They cause less suspicion among potential victims, ”says Vasily Diaghilev, head of Check Point Software Technologies in Russia and the CIS. – Despite the fact that the self-isolation regime in some regions is waning, the number of cyber attacks will only grow in the near future. The coronavirus pandemic has become the catalyst for another global process – cyber pandemic. ” A.
According to Check Point, the number of weekly attacks increased in June by 18% compared with the average in May. However, the number of coronavirus-related attacks is declining. So, in the first week of June 129,796 attacks were recorded, which is 24% less than in May. It is noted that in the first two weeks of June, 2451 new domains associated with coronavirus were registered. Of these, 4% (91) were considered malicious and 3% (66) – suspicious.