Weekly Threat Report - 13th March 2020
Coronavirus used as bait by phishers
Several cyber security researchers have uncovered a surge in the number of phishing emails using the coronavirus as a lure.
Cyber criminals have been exploiting the pandemic to steal money or sensitive information through phishing campaigns in several countries.
By creating fake websites and emails masquerading as legitimate, attackers have been able to infect victims with malware.
Unfortunately, cyber criminals are opportunistic and can often look to exploit current events and public concerns. See the NCSC’s suspicious email advice to learn more about spotting and dealing with phishing emails.
Global network of bots brought down
Cyber security teams from across 35 countries, including Microsoft, have dismantled one of the world’s largest network of bots.
The network, called Necurs, is believed to have infected more than nine million computers worldwide.
A botnet is a network of infected devices, connected to the Internet, used to commit coordinated cyber attacks without their owner's knowledge.
Cyber criminals can use botnets to remotely take over internet-connected devices and install malicious software. This malware can then be used to send spam, collect information on users, and delete information without the owner’s knowledge.
In a blog, Tom Burt, vice-president for customer security and trust at Microsoft, said the takedown was the result of eight years planning.
Malware is malicious software, which can cause harm to computers. The NCSC has published guidance for private and public sector organisations on how to mitigate against malware, as well as what to do if you become infected.