The Internet is drowning in COVID-19-related malware and phishing scams

Enlarge (credit: EpicTop10.com / Flickr)

Emails and websites are promising vital information about keeping safe from the coronavirus pandemic that's sweeping the globe and threatening millions. In fact, a flood of them are scams that push malware, ransomware, and disinformation; attempt to steal passwords and personal information; and conduct espionage operations by hackers working for nation-states.

One of the most recent coronavirus hoaxes to come to light is an Android app available at coronavirusapp[.]site. It claims to provide access to a map that provides real-time virus-tracking and information, including heatmap visuals and statistics. In fact, a researcher from DomainTools said, the app is laced with ransomware.

"This Android ransomware application, previously unseen in the wild, has been titled 'CovidLock' because of the malware's capabilities and its background story," DomainTools researcher Tarik Saleh wrote in Friday's report. "CovidLock uses techniques to deny the victim access to their phone by forcing a change in the password used to unlock the phone. This is also known as a screen-lock attack and has been seen before on Android ransomware."

Read 7 remaining paragraphs | Comments