Huge rise in phishing domains since COVID vaccines began

Cyberattackers continue to leverage the COVID-19 pandemic

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Cyberattackers are continuing to leverage the COVID-19 pandemic in their exploits, with new research indicating that the number ofphishingcampaigns centered on the vaccine roll-out has risen significantly of late.

The Real-Time Anti-Phishing protection system developed by cybersecurity firm Webroot has found an increase in the number of malicious URLs using subjects like vaccines, COVID cures, and travel.

These terms, which are particularly important to people in the current climate, are being utilized in order to encourage unsuspecting victims to click on suspicious links and open illegitimate emails.

Phishing on the rise

According to Webroot’s analysis, the use of the word “vaccine” in suspicious domain names increased by 94.8% between December 8 last year and January 6, 2021, when compared to the previous 30 days. In addition, this period also showed an increase of 336% when compared with March 2020.

In total, Webroot found more than 4,500 new suspicious domains that contained a reference to “COVID-19,” “Corona,” “vaccine,” “cure COVID,” and other related terms. Of these, 934 domains included the word “vaccine,” while a further 611 contained a misspelling of “vaccine.”

“As 2021 brings the first mass vaccination programs to fight COVID-19, we’re already seeing cybercriminals exploiting the publicity and anticipation surrounding these to target businesses and consumers in phishing and domain spoofing attacks,” Nick Emanuel, Senior Director of Product at Webroot, said. “Scams using keywords based on emotive subjects concerning medical safety and the pandemic are always going to be more effective, especially when they’re in the public interest.”

Webroot’s findings should come as no surprise, as it has long been observed that cyberattackers are attempting to use the pandemic to their advantage.Googlerecordeda record numberof phishing attempts in 2020, while earlier this week the FBI issued a warning to businesses over a rise invishingattacks.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Barclay has been writing about technology for a decade, starting out as a freelancer with ITProPortal covering everything from London’s start-up scene to comparisons of the best cloud storage services.  After that, he spent some time as the managing editor of an online outlet focusing on cloud computing, furthering his interest in virtualization, Big Data, and the Internet of Things.

This new phishing strategy utilizes GitHub comments to distribute malware

Should your VPN always be on?

NYT Strands today — hints, answers and spangram for Sunday, November 10 (game #252)