Over 18 Million Covid-19 Malware and Phishing Emails Blocked by Google

Google | April 27, 2020

  • Google says it has blocked 18 million daily malware and phishing emails related to COVID-19 over the past week.

  • Majority of malware and phishing emails involve impersonation.

  • This includes implementing multi-factor authentication methods that require people to prove their identity using two or more verification methods.


Google says it has blocked 18 million daily malware and phishing emails related to COVID-19 over the past week. The search giant also says it has encountered over 240 million daily spam messages related to the novel coronavirus. On a typical day, Google blocks over 100 million phishing messages daily. According to Google, the cybercriminals use both fear and financial incentives to create urgency to prompt users to respond.

Google says that the majority of malware and phishing emails involve impersonating government organizations such as the World Health Organization. Some of the coronavirus-related malware and phishing emails solicit fraudulent donations for various causes. In contrast, malware tricks attempt to deceive users into downloading files laced with malware on their devices. Other phishing attempts claim to possess information about the government stimulus packages for individuals and small businesses. Phishing scams targeting remote workers purport to be the recipient’s employer.

“The fact that 18 million Covid-19-related emails are blocked each day just by Google is a sign of just how prolific these attacks are,” Kron says. “In these times of high stress and change.

~ Erich Kron Cybersecurity Keynote Speaker


Learn more: PHISHING KITS BECOME “BESTSELLER” IN THE UNDERGROUND MARKET: RESEARCH
 

He added that criminals are aware of the system vulnerabilities arising from employees working at home away from secure corporate networks.
 

“The best thing organizations can do right now is to ensure that their employees have up-to-date training on how to spot and report phishing emails to their organization”.

~ LaSala, Director of Security Solutions


The search giant notes that most of the malware and phishing emails are not new but are existing campaigns updated to exploit the panic and curiosity caused by the current pandemic. The company adds that its machine learning AI algorithm can block 99.9% of spam phishing and malware from reaching its users. Google is also working on other techniques, such as implementing the Domain-based Message Authentication, Reporting, and Conformance (DMARC), to prevent fraudsters from impersonating the www.who.int domain. This method will also prevent WHO messages from accidentally being filtered out as spam due to the frequency of similar fraudulent messages.

Google advises people to avoid downloading files from untrusted users. Additionally, the search giant recommends using its email preview inbuilt tool to view documents before downloading. However, some experts have been critical of Google’s response to malware and phishing emails threats. Colin Bastable, CEO of security awareness training company Lucy Security says Google allows scammers to associate Gmail accounts with phishing links while virtue-signaling its users about security.

Learn more: WORK FROM HOME: CYBER SECURITY DURING COVID-19
 

Spotlight

The cyber security industry has faced two major sets of challenges over the last twelve months. The attacks and exploits affecting Solar Winds, Accellion, Microsoft and their customers have focused attention on supply chain risk, but the impact of the coronavirus pandemic has been felt more broadly across cyber security domains and disciplines.

Spotlight

The cyber security industry has faced two major sets of challenges over the last twelve months. The attacks and exploits affecting Solar Winds, Accellion, Microsoft and their customers have focused attention on supply chain risk, but the impact of the coronavirus pandemic has been felt more broadly across cyber security domains and disciplines.

Related News

DATA SECURITY

EclecticIQ, CyberSecurity Malaysia, and Syntx Signed MOU to Improve Malaysia's Cybersecurity Posture

EclecticIQ | January 27, 2022

At a virtual ceremony, the government agency providing specialized cybersecurity services, CyberSecurity Malaysia (CSM), a leading global threat intelligence, hunting, and response technology provider, EclecticIQ, and a Malaysian cybersecurity company, Syntx, signed a Memorandum of Understanding (MOU). The three organizations have committed to engaging in various activities targeted at enhancing Malaysia's and Southeast Asia's cybersecurity postures to address escalating threats. Expanding the use of cyber threat intelligence (CTI), a type of cybersecurity that focuses on gathering and evaluating information about current and possible attacks, is one of the main objectives. Chief executive officer for CyberSecurity Malaysia, Dato' Ts. Dr. Haji Amirudin Bin Abdul Wahab FASc, said, "CSM is pleased to work with an international industry player and partner with a local SME that have the same shared core beliefs to empower prudent cybersecurity practices. It is timely to forge this strategic collaboration that will drive higher awareness and adoption of cyber threat intelligence in Malaysia." The three organizations plan to collaborate on a joint research publication on a CTI topic relevant to the region, support the creation of a centralized CTI knowledge base, and provide practical guidance on the use of CTI methods through case studies, including lessons learned from CSM's deployment of the EclecticIQ Threat Intelligence Platform. All actions will align with the Malaysia Cyber Security Strategy 2020-2024 and will support it. "As a global leader in threat intelligence technology, we advocate for a safer world through collaboration. Building strong partnerships in the fight against cyber threats is an important part of that advocacy. This memorandum will further strengthen collaboration and represent an important milestone in our efforts to empower Malaysia and the entire Southeast Asia region with tools and technologies to enhance cyber situational awareness. In addition, we are honored by the confidence placed in EclecticIQ by the Malaysian government and our partner Syntx." CEO and founder of EclecticIQ, Joep Gommers Chief executive officer for Syntx Sdn Bhd, Fadzril Azhar, stated"Syntx is honored to be a part of this collaboration, which manifests the trust placed in us by both parties and provides significant encouragement for us to work harder. We are committed to grow more local capabilities and capacities in cybersecurity, especially around cyber threat intelligence."

Read More

Developer-Centric Application Security Company StackHawk announces its launch of its General Accessibility

prnewswire | September 01, 2020

StackHawk, the software-as-a-service startup that empowers software engineers to easily find and fix application security bugs before they hit production, today announced it is launching into general availability. Over the past year, the product has built a strong base of Early Access customers who have automated their AppSec testing in the CI pipeline, checking for vulnerabilities on every merge. With great feedback from these early customers, StackHawk is now available to any company that wants to deliver secure software.

Read More

PLATFORM SECURITY

Cybersecurity Solutions Provider ActZero Partners with TD Synnex

ActZero | May 02, 2022

ActZero, a cybersecurity startup whose AI-powered managed detection and response (MDR) technology enables enterprises to cover more area, today announced a strategic partnership with TD Synnex, a global IT distributor and solutions aggregator. The agreement strengthens ActZero and TechData's current cooperation, which started in September 2021. The ActZero platform integrates next-generation antivirus protection, endpoint detection and response (EDR), and automated and controlled threat hunting capabilities that are available 24 hours a day, seven days a week, thanks to a purpose-built AI engine. The ActZero MDR solution combats the most common threats in the settings of SMB and mid-sized companies, ranging from cheap malware to highly complex assaults. The company's new relationship with TD Synnex will duplicate its earlier cooperation with Tech Data, with the objective of accelerating adoption of ActZero's unique security platform via the TD Synnex edge-to-cloud portfolio while widening access to better security for small and mid-size organizations. "Our partnership with TD Synnex represents the next natural step in our business growth, leveraging the combined strengths and depth of the now merged powerhouses of Tech Data and Synnex. We're confident in their ability to deliver incredible results for us through their unmatched platform and security expertise, and proud to be aligned with such an incredible force within the IT ecosystem." ActZero Chief Operating Officer Chris Finan TD Synnex, the undisputed world leader in its field, enables development for its partners by giving unrivaled access to a worldwide distribution network, enabling its 150,000+ clients in more than 100 countries to maximize the value of their technological investments. Partnering with best-in-class cybersecurity innovator ActZero significantly expands their portfolio, providing customers with a critical new security solution to protect them from malware, ransomware, account takeover attacks, and other cyber threats that have the potential to severely disrupt business. Reyna Thompson, Senior Vice President, Product Management, Advanced Technology Solutions- Security, NA at TD SYNNEX said that "ActZero is a great new asset to our line card, offering our customers a cutting-edge cybersecurity solution that will prove to be critical to their business needs. ActZero has been an impressive company since its inception, delivering 24/7 monitoring, protection, and response. We're excited to watch their growth as we help to elevate their exposure and get their remarkable services into the hands of small and mid-size businesses worldwide."

Read More