Hackers are spreading malware through coronavirus maps

News
By published

Cybercriminals have found yet another way to capitalize on people's fears surrounding the virus

Coronavirus Map
(Image credit: John Hopkins University)

The ongoing coronavirus outbreak has disrupted business operations across the globe but cybercriminals are showing no signs of slowing down as they attempt to capitalize on people's fears surrounding the virus.

Back in January, hackers used the coronavirus to launch email campaigns that infected users with malware and now they've begun to use coronavirus maps to do so as well. 

Many organizations including John Hopkins University have created dashboards to keep track of the spread of the coronavirus and many people rely on these dashboards to stay up to date with the latest infection numbers. 

However, security researcher at Reason Labs, Shai Alfasi has discovered that hackers are now creating fake versions of these dashboards to steal information including user names, passwords, credit card numbers and other data stored in users' browsers.

Unlike legitimate coronavirus dashboards, these fake websites prompt users to download an application to help them stay updated on the situation. This application doesn't even need to be installed to infect a user's computer with malware. As of now, the malware only affects Windows devices but Alfasi expects that hackers will find a way to develop a new version that can infect other operating systems as well.

Fake coronavirus maps

In a blog post detailing his findings, Alfasi explained that these fake coronavirus maps are using malicious software called AZORult to infect users' machines, saying:

“The new malware activates a strain of malicious software known as AZORult. AZORult is an information stealer and was first discovered in 2016. It is used to steal browsing history, cookies, ID/passwords, cryptocurrency and more. It can also download additional malware onto infected machines. AZORult is commonly sold on Russian underground forums for the purpose of collecting sensitive data from an infected computer.”

Identifying these fake websites is easy enough as they often have a URL or details that are different from legitimate coronavirus dashboards.

To avoid falling victim to this latest coronavirus scam, it is recommended that users only check verified dashboards such as the one from John Hopkins University for information regarding the virus.

Via The Next Web

TOPICS
Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Read more
Representational image of a cybercriminal
Criminals are spreading malware disguised as DeepSeek AI
NordVPN
US hit with over 1.9 billion malware threats last year - here's how to stay safe
DeepSeek
Fake DeepSeek installers are infecting your device with dangerous malware
Robotic hand clicking on captcha 'I am not a robot'.
Fake CAPTCHAs are being used to spread malware - and we only have ourselves to blame
Pirate skull cyber attack digital technology flag cyber on on computer CPU in background. Darknet and cybercrime banner cyberattack and espionage concept illustration.
Mac users targeted with new malware, so be on your guard
A digital representation of a lock
Security experts are being targeted with fake malware discoveries
Latest in Security
Lock on Laptop Screen
Data breach at Pennsylvania education union potentially exposes 500,000 victims
Spyware
Stalkerware data breach potentially hits over 2 million users, including thousands of Apple devices
An American flag flying outside the US Capitol building against a blue sky
Five Eyes "cannot replace US intel in Ukraine", claims former US Cyber Command Chief
Pirate skull cyber attack digital technology flag cyber on on computer CPU in background. Darknet and cybercrime banner cyberattack and espionage concept illustration.
Criminals are using a virtual hard disk image file to host and distribute dangerous malware
WordPress on a laptop
Over 20,000 WordPress sites hit by damaging malware campaign
Trojan
WhatsApp patches security flaw which let hackers install spyware
Latest in News
Apple Watch foldable display patent
Forget the folding iPhone – Apple has patented a foldable Apple Watch with two screens
Matt Murdock looking angry in Daredevil: Born Again season 1 episode 2
Daredevil: Born Again season 2 first look images have already spoiled how the Marvel TV show's first season will end on Disney+
Quordle on a smartphone held in a hand
Quordle hints and answers for Friday, March 21 (game #1152)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Friday, March 21 (game #383)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Friday, March 21 (game #649)
The ASSC Assassin's Creed collection.
The Assassin's Creed x Anti Social Social Club drop includes gaming merch that I wouldn't be embarrassed to wear
More about security
Spyware

Stalkerware data breach potentially hits over 2 million users, including thousands of Apple devices
Lock on Laptop Screen

Data breach at Pennsylvania education union potentially exposes 500,000 victims
Apple Watch foldable display patent

Forget the folding iPhone – Apple has patented a foldable Apple Watch with two screens
See more latest
Most Popular
Apple Watch foldable display patent
Forget the folding iPhone – Apple has patented a foldable Apple Watch with two screens
Matt Murdock looking angry in Daredevil: Born Again season 1 episode 2
Daredevil: Born Again season 2 first look images have already spoiled how the Marvel TV show's first season will end on Disney+
Spyware
Stalkerware data breach potentially hits over 2 million users, including thousands of Apple devices
Miele Guard L1 Comfort XL cyclinder vacuum
I've been patiently waiting for the newest vacuum tech to make its way into cylinder vacuums, and Miele has finally delivered
The ASSC Assassin's Creed collection.
The Assassin's Creed x Anti Social Social Club drop includes gaming merch that I wouldn't be embarrassed to wear
Quordle on a smartphone held in a hand
Quordle hints and answers for Friday, March 21 (game #1152)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Friday, March 21 (game #383)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Friday, March 21 (game #649)
Living room with Microsoft Xbox Series X (L) and Sony PlayStation 5 home video game consoles alongside a television and soundbar, taken on November 3, 2020.
The PS5 is currently selling faster than the PS4 did in the US, but I'm surprised to discover that the Xbox Series X and S are trailing behind Xbox One
Lock on Laptop Screen
Data breach at Pennsylvania education union potentially exposes 500,000 victims