The cybersecurity expert Brian Krebs: The malware has undergone a rebrand. Binary is virtually identical, and employs the same "MZ-as-alternative-entrypoint" trick.
The UK NCSC declares war to coronavirus cybercrime. The organization launched some dedicated services, as Suspicious Email Reporting Service and a Cyber Aware campaign to help protecting people against COVID-19 scams, phishing and attacks
Coronavirus-linked cyber threats have a new enemy in the UK. The National Cyber Security Centre (NCSC) launched some dedicated services to defend the nation against cybercrime, incluging a ‘Cyber Aware’ campaign, urging the public to flag COVID-19 related scams. Thanks to the “Suspicious Email Reporting Service”, it will be easy for people to forward suspicious messages to the NCSC – including those claiming to offer services related to the pandemic. This will build on the organisation’s existing takedown services, which have already removed more than 2,000 online scams related in the last month, including:
- 471 fake online shops selling fraudulent coronavirus related items;
- 555 malware distribution sites set up to cause significant damage to any visitors; 200 phishing;
- sites seeking personal information such as passwords or credit card details;
- 832 advance-fee frauds where a large sum of money is promised in return for a set-up payment.
The NCSC tips to increase the own cyber security, especially at home
The NCSC anti-coronavirus cybercrime aware campaign aims to increase cyber security, especially at home. The tips include:
- Create a separate password for your email;
- Create a strong password using three random words;
- Save your passwords in your browser;
- Turn on two-factor authentication;
- Update your devices;
- Turn on backup
This, starting from there concept that the personal email account contains lots of important information about the victim and is the gateway to all other online accounts. Furthermore, weak passwords can be hacked in seconds, so it’g good to use different and strong one. Possibly, saving them on the browser. Furthermore, two-factor authentication (2FA) is a free security feature that gives an extra layer of protection online and stops cyber criminals getting into user accounts, even if they have the password. They also exploit vulnerabilities linked to old software. That’s why is imperative to update it. Finally, a backup could save if a phone, tablet or laptop it has been hacked.