Cuttack: The Odisha Crime Branch (CB) has issued an advisory to check abuse of cyber space for spread of misinformation about the coronavirus pandemic.
The attackers are using various methods to exploit the fear and need for information related to coronavirus among people by sending fake malicious documents (such as Health Advisories, Covid -19 Response Documents, E-books) in the name of reputable and trusted sources (like Government, World Health Organization).
The other ways employed by them are:-
> Creating fake malicious websites/apps related to coronavirus (such as Coronavirus Maps, Real Time Coronavirus tracking apps and Corona Antivirus).
>Running spam campaigns of selling masks, sanitizers, coronavirus vaccines on online shopping portals
> Fake online sales offering premium goods at unbelievable prices in the name of *’Corona Special Offer”.
> Sending threatening emails and messages (such as extortion emails threatening to infect the family with coronavirus) related to coronavirus.
> Various nation state threat groups have also become active and carrying out spear-phishing campaigns targeting government officials.
> Spreading fake news related to coronavirus via platforms like WhatsApp,
Telegram, to create fear among people
“Once the attackers succeed in tricking their targets to accept the bait, they can earn
huge amounts of money from the victims, create a state of panic or compromise
victim’s system for carrying out other cyber crimes such as espionage, spread
ransomware, steal data,” the order said.
Suggestions
I. Use only trusted sources, such as legitimate government websites for up-
to-date, fact-based information about COVID 19.
2. Never respond to unsolicited requests for personal and /or financial
information ( even if conducted via phone or in person).
3. Download mobile apps only from the official App Store and avoid granting
any unnecessary permissions.
4. Verify the authenticity of the charity campaigns related to COVID-19 prior to making any contributions.
5. Exercise extreme precaution before opening any email attachments or clicking any links received from unknown senders (especially in relations to health information or having the theme of coronavirus). Be aware of phishing scams and take every possible precaution to avoid falling for scams.
6. Organizations should ensure that secure Remote Access Technologies are in place and configured correctly, including the use of multi-factor authentication, so that all employees can conduct their work securely from home.
7. Individuals should avoid using personal devices for work and ensure that personal devices have same level of security as a company-owned device, Also, take care of the Data Privacy and Security of any sensitive information while doing work from home.
8. Be cautious of the offers and discounts given in the name of Coronavirus and ensure that you are only ordering goods from authentic sources instead of going through the promotional links received in mails or messages.
9. Make sure that the devices have latest security updates installed and also have good antivirus or anti-malware solutions.