Advisory COVID 19-related Phishing Attack Campaign

Advisory COVID 19-related Phishing Attack Campaign

  • 18th July 2020

While we try to get used to the Covid-19 pandemic's 'new normal' in our work and home lives. this year has been a time of unprecedented opportunity for cyber-criminals. The global response to the pandemic, and our desire

for the latest information about it. has supercharged criminals' and hackers' business-as-usual models of phishing emails and fake websites.

The phishing campaign is expected to use malicious emails under the pretext of local authorities in charge of dispensing government-funded Covid-19 support initiatives. Such emails are designed to drive recipients towards fake websites where they are deceived into downloading malicious files or entering personal and financial information.

The malicious actors are claiming to have 2 million individual/ citizen email IDs and are planning to send emails with the subject: free COVID-19 testing for all residents of Delhi. Mumbai. Hyderabad. Chennai and Ahmedabad. inciting them to provide personal information.

It has been reported that these malicious actors are planning to spoof or create fake email IDs impersonating various authorities. The email id expected to be used for the phishing campaign towards Indian individuals and businesses is expected to be from email such as "ncov2o1g@gov.in" and the attack campaign is expected to start on 21st June 2020.The email may look as follows:



Dear citizens.

The Ministry of health and family welfare, government of India has announced a mandatory COVID-19 testing for all the residents of Delhi.Mumbai.Chennai and Ahmedabad.

Please Immediately register using Link below for all free COVID-19 test. Do not forget to provide complete contact details with PAN no Link Cncov2o1g@gov.in')



Best practises for protection from phishing attack

Inform your users about possibility of such emails
Perform periodic info sec awareness programs for employees
Consider investing in a good spam firewall or spam filtering service
Run periodic mock phishing tests to test user awareness levels and adjust training requirements accordingly.