Cybercriminals have long used unethical tactics to deceive people, including playing with their fears. Cybercriminals now claim to spread malware by e-mailing information about how to defend against coronaviruses. At present, there are nearly 10,000 confirmed cases of coronavirus worldwide, with a total of 213 deaths. This situation recently led the World Health Organization to declare it a public health emergency.
Bleeping Computer reports that spammers linked to the Emotet Group have been sending emails to Target Japan warning them of infection sinatted in several counties across the country. The information appears to be an official notification from disability benefit service providers and public health centers, and attackers use stolen emails as templates to make them look more legitimate.
The emails claim to provide advice in the attachment on how to prevent coronaviruses. Opening these Word documents will bring up an Emotet Office 365 document template that requires the victim to “enable content” to see everything. Once a computer is infected, it is used to send malicious spam to other targets and install it on a device, where it can collect user credentials, browser history, and sensitive documents, and package it and send it to a storage server controlled by an attacker.
In the past, Emotet criminal gangs have used the public eye to spread malware. In December, it sent out a similarly malicious email inviting people to participate in protests against climate change.