Darkreading.com reported that “a lot of the activity has involved phishing and social-engineering campaigns where COVID-19 has been used as a thematic lure to get people to click on malicious attachments and links in emails or to download malware on mobile and other devices.” The March 20, 2020 article entitled “Attack Surface, Vulnerabilities Increase as Orgs Respond to COVID-19 Crisis” included these comments:
There have also been reports about account takeover and business email compromise activity, a growth in domains serving up drive-by malware, and attempts to exploit virtual private networks (VPNs) and other remote access tools.
The danger posed by these threats has been exacerbated by new requirements for “social distancing” and the resulting push by many organizations to widen or implement telework capabilities for their workforce.
Please be vigilant and stay safe!