Researchers from Unit 42 said they have been able to identify two risky Covid-related domains in the Philippines: covid19qpass.hopto.org and fcovid.ph.
This can be due to the fact that DDoS actors are taking advantage of the current situation when people are locked down in their homes and are heavily reliant on digital resources.
Global survey shows the average cost of recovery is $1.4 million if organizations pay the ransom, $730,000 if they don’t.
The report revealed that it has become harder for workers to separate working and personal activity.
Dubbed “PhantomLance”, the campaign has been active since at least 2015 and is still ongoing, featuring multiple versions of a complex spyware – software created to gather victims’ data – and smart distribution tactics.
In a span of 10 days — from March 17 to 26 — BPI already detected 24 Covid-themed phishing emails.
The Department of Information and Communications Technology has directed all management information system (MIS) server operators to utilize the updated version of cryptographic protocols for all government websites.
By using the fear of pandemic, attackers are able to deploy DDoS attacks and steal passwords.