Researchers from Unit 42 said they have been able to identify two risky Covid-related domains in the Philippines: covid19qpass.hopto.org and fcovid.ph.
This can be due to the fact that DDoS actors are taking advantage of the current situation when people are locked down in their homes and are heavily reliant on digital resources.
Dubbed “PhantomLance”, the campaign has been active since at least 2015 and is still ongoing, featuring multiple versions of a complex spyware – software created to gather victims’ data – and smart distribution tactics.
The Department of Information and Communications Technology has directed all management information system (MIS) server operators to utilize the updated version of cryptographic protocols for all government websites.