As we were cowering in fear for some natural disaster to wipe us off the face of the Earth after rumors that the end of the world is scheduled for 21st June 2020 instead of 12th December 2012, some hackers are preparing to launch a massive phishing attack.
The government has asked people to be extra careful during the next few days while using the web. There is a possibility that a phishing attack to steal personal and financial information will come under a disguise of COVID-19 responders.
The Computer Emergency Response Team of India has announced that a group of malicious actors is planning to launch a phishing attack from 21st June onwards.
“The phishing campaign is expected to use malicious emails under the pretext of local authorities in charge of dispensing government-funded COVID-19 support initiatives. Such emails are designed to drive recipients towards fake websites where they are deceived into downloading malicious files or entering personal and financial information,” says the CERT statement.
The agency that works under the Information Technology Ministry also stated, “..The malicious actors are claiming to have two million individual/citizen email IDs and are planning to send emails with the subject free COVID-19 testing for all residents of Delhi, Mumbai, Hyderabad, Chennai and Ahmedabad, inciting them to provide personal information. These malicious actors are planning to spoof or create fake email IDs impersonating various authorities. The email ID expected to be used for the phishing campaign towards Indian individuals and businesses is expected to be from email such as ‘firstname.lastname@example.org‘ and the attack campaign is expected to start on June 21, 2020.”
CERT has asked people not to respond to any such communication or open attachments even if they know the sender.