- Joined
- May 15, 2016
- Messages
- 14,557
- Likes
- 2,645
- Points
- 1,730
The Centers for Disease Control are sent phishing notifications about the need to take a coronavirus test.
Specialists of the information security division of ElevenPaths of the Spanish telecommunications company Telefónica discovered a new cybercrime operation aimed at stealing confidential data from Taiwanese users.
According to the researchers, attackers send phishing emails to a select group of victims, skillfully tampered with by notifications from the Taiwan Centers for Disease Control. Letters are addressed to employees of the same centers.
Last month, for a week, attackers sent letters to victims stating that they supposedly had to undergo a new coronavirus test. The attachment to the letter contained a hacker tool for remote identity theft and hacking of web-cameras. According to ElevenPaths, the victims and the type of tool chosen by cybercriminals indicate that they are interested in information, in particular government information. Whether the attempts of phishing attacks were crowned with success is unknown.
The hackers from the Vendetta group, which appeared just two months ago, are supposedly behind the attacks. The group impersonates government agencies in different countries by sending phishing emails to victims on their behalf. According to the reportQihoo 360 security company in May 2020, Vendetta posed as a government agency in Austria, Australia and Romania, trying to install remote hacking tools on victim systems. In at least one case, her goal was to steal confidential business documents.
Most likely, the number of Vendetta victims in Taiwan is small. Such groups do not conduct massive cyber attacks, but carefully select their victims.
Disease Control Centers are not the only targets of cybercriminals in Taiwan. In another non-Vendetta campaign, attackers attacked the Ministry of Health and Social Welfare in order to install LokiBot malware to steal data.
__________________
Specialists of the information security division of ElevenPaths of the Spanish telecommunications company Telefónica discovered a new cybercrime operation aimed at stealing confidential data from Taiwanese users.
According to the researchers, attackers send phishing emails to a select group of victims, skillfully tampered with by notifications from the Taiwan Centers for Disease Control. Letters are addressed to employees of the same centers.
Last month, for a week, attackers sent letters to victims stating that they supposedly had to undergo a new coronavirus test. The attachment to the letter contained a hacker tool for remote identity theft and hacking of web-cameras. According to ElevenPaths, the victims and the type of tool chosen by cybercriminals indicate that they are interested in information, in particular government information. Whether the attempts of phishing attacks were crowned with success is unknown.
The hackers from the Vendetta group, which appeared just two months ago, are supposedly behind the attacks. The group impersonates government agencies in different countries by sending phishing emails to victims on their behalf. According to the reportQihoo 360 security company in May 2020, Vendetta posed as a government agency in Austria, Australia and Romania, trying to install remote hacking tools on victim systems. In at least one case, her goal was to steal confidential business documents.
Most likely, the number of Vendetta victims in Taiwan is small. Such groups do not conduct massive cyber attacks, but carefully select their victims.
Disease Control Centers are not the only targets of cybercriminals in Taiwan. In another non-Vendetta campaign, attackers attacked the Ministry of Health and Social Welfare in order to install LokiBot malware to steal data.
__________________