Warning: users receive Covid-19 Omicron variant-themed phishing emails

The name of the new virus version locking all of the world used to lure users in a malicious email campaign

Threat actors use the name of the new Covid-19 variant to lure people into revealing their personal details

Threat actors released the crafted phishing email campaign into the wild that uses news about the new severe COVID-19 variant to their advantage.^[1] It was spotted that phishers sent emails appearing to be sent from NHS that urges receivers to get the new test for this Omicron variant.^[2] Two particular versions of the email got discovered, and both feature the link and a button saying “Get it Now”. The fake email seems authentic, so people are already potentially falling victim to the campaign.

Clicking on the button that should provide more information and redirect to the site related to the news about his test eventually takes you to the official NHS website look-alike. The page is a copycat set up only days before the campaign started.^[3]

Users then should enter their full names, date of birth, address, mobile phone number, email, other personal details. Such information can be used for additional attacks involving identity theft and fraud.^[4] Apparently, this personal information is the goal of criminals behind the campaign.

If you think that you got targeted by such an email campaign and entered your personal or financial details on a fraudulent site try to contact the bank immediately and cancel those accounts or cards. Monitor activities on bank accounts and review upcoming transactions to notice any suspicious activities or unauthorized transfers.

Scammers use the fact that people are concerned about such news

The topic, chosen for the phishing email campaign is great because people are worried about such news and these new versions coming out. The Omicron affects nad infection cases are popular, so phishers target people who get lured easier.

The particular scam page even asked for the small payment of 1.24 pounds for the delivery of this alleged test. The amount is in pounds because receivers were mainly located in the United Kingdom. This payment feature also is for data collecting because scammers manage to get peoples' banking details and credit card information stolen.

The phishing campaign was discovered by the UK's consumer protection organization “Which?” who also managed to get and publish samples of these malicious emails. Attackers pretended to be United Kingdom's National Health Service that issues the official warning for people.

Pandemic increases the risk of data theft

This Covid-19 virus changed our lives in terms of having to do everything from home, including schools, jobs, therapy. However, security online and issues with cyber threats and scams have also changed. Cybercriminals who increase their tactics and change their methods to use the pandemic in scams that aim to steal data useful in future scams and direct campaigns.

Sensitive client information is extremely valuable, so criminals try to evolve with these online security times to get their successful campaigns out there. Experts report scams that are a security risk during such times. Some of them even involve tax professionals as targets because of the client data they may have and access.

Identity theft also evolves with these times. Pandemic is one of the tricks successfully used by attackers who want to obtain information and take advantage of people. Taking important security steps can help avoid any of this and other security issues like infections or breaches.^[5]