COVID-19 Campus Message from UT Health San Antonio

March 28, 2020

COVID-19 Phishing Sample #5: Dirty little secret

March 24, 2020

In scams like these, the crooks don’t have any data on you, let alone details about all your family members and where they live. The “proof or secret” they may have is a password you used to have that was extracted from publicly available data leaked in an old data breach. Don’t be scared, send […]

COVID-19 Phishing Sample #4: Coronavirus disease (COVID-19) outbreak prevention and cure update

March 24, 2020

This email instructs recipients to open an attachment for the purpose of receiving updated instructions on how to fight the coronavirus. This attachment was an archive that, when opened, revealed “Coronavirus Disease (Covid-19) CURE.exe.” When run, this executable loaded HawkEye, a keylogger which is capable of intercepting keystrokes, stealing credentials, taking screenshots, and exfiltrating its […]

COVID-19 Phishing Sample #3

March 23, 2020

1 – From address is inconsistent with name 2 – Lure intended to entice user to click suspicious links; verify something like this with a reputable news source

COVID-19 Phishing Sample #2

March 23, 2020

1 – From address is inconsistent with name 2 – Generic greeting 3 – 700,000 euros == if it looks too good to be true, it probably is 4 – Bank secretary with a Gmail.account + many, many punctuation and spelling errors

COVID-19 Phishing Sample #1

March 23, 2020

From address claims Federal agency (CDC), but displays incorrect address. The attachment contains malicious code to infect the user’s computer.

You can beat COVID-19 with these preventive measures

March 4, 2020

This company sells products claiming to ease or reverse the effects of allergies.  The company appears to be using the current health crisis to direct users to AllerPop’s web site for an article and, indirectly, to their products.  View at your own risk!