Johns Hopkins University has provided a valuable resource for tracking novel Coronavirus infections, deaths and recoveries across the world from a single dashboard. Unfortunately it's not just valuable for people monitoring the pandemic--KrebsOnSecurity reported that malware distributors are using it to find victims.
The report indicated that cyber criminals have started to sell infection kits featuring this Coronavirus-tracking dashboard for anywhere from $200 to $700. Buyers could use those kits in malicious websites and emails to infect systems with the AZORult malware. Tracking a physical infection could lead to contracting a digital one.
Cylance explained in June 2019 that AZORult can be used to "steal personal information such as passwords, cookies, browsing history, and more" from infected systems. That sensitive information could then be abused by the attackers or bundled with other stolen data so it can be sold on illicit marketplaces.
This isn't the first time the Coronavirus outbreak has been used to spread malware. Spammers actually started taking advantage of it in January by claiming to offer information about how to avoid contracting the novel Coronavirus (COVID-19). Those messages included attachments that spread the Emotet malware when opened.
Similar attacks will probably continue as long as COVID-19 remains in the news. (Which, if it continues to spread throughout pretty much the entire world, will be for a while.) The best way to defend against these efforts is to refrain from opening suspicious attachments or allowing websites to install anything on your system.
Stay on the Cutting Edge
Join the experts who read Tom's Hardware for the inside track on enthusiast PC tech news — and have for over 25 years. We'll send breaking news and in-depth reviews of CPUs, GPUs, AI, maker hardware and more straight to your inbox.
Nathaniel Mott is a freelance news and features writer for Tom's Hardware US, covering breaking news, security, and the silliest aspects of the tech industry.
Your fingerprints can be recreated from the sounds made when you swipe on a touchscreen — Chinese and US researchers show new side channel can reproduce fingerprints to enable attacks
Russian military botnet discovered on 1000+ compromised routers — FBI deactivated Moobot by taking control of impacted routers