News

Phishing Lures Shift from COVID-19 to Job Opportunities

  • None--threatpost.com
  • published date: 2020-10-16 14:35:00 UTC

Fortinet researchers are seeing a pivot in the spear-phishing and phishing lures used by cybercriminals, to entice potential job candidates as businesses open up.

<div class="c-article__content js-reading-content"> <p>Cybercriminals cashed in on the surge of COVID-19 earlier this year, with email lures purporting to be from healthcare professionals offering more information about the pandemic. However, as the year moves forward, bad actors are continuing to swap up their attacks with savvy lures that match top-of-mind current events, said Derek Manky, Chief of Security Insights &amp; Global Threat Alliances at <a href="https://www.fortinet.com/fortiguard/threat-intelligence/threat-research" target="_blank" rel="noopener noreferrer">Fortinet’s FortiGuard Labs.</a></p> <div id="attachment_139693" style="width: 160px" class="wp-caption alignright"><a href="https://media.threatpost.com/wp-content/uploads/sites/103/2018/12/07104233/Derek-Manky.jpg"><img aria-describedby="caption-attachment-139693" loading="lazy" class="wp-image-139693" src="https://media.threatpost.com/wp-content/uploads/sites/103/2018/12/07104233/Derek-Manky-300x300.jpg" alt="" width="150" height="150"></a><p id="caption-attachment-139693" class="wp-caption-text">Derek Manky</p></div> <p>In the third quarter of 2020, cybercriminals sent spear phishing emails pretending to be about economic incentives, as governments offered financial aid to those affected by the pandemic. And researchers are seeing ongoing email based attacks that tap into new job opportunities – as businesses start to open up – with job candidates lures.</p> <p>“As jobs started to be recreated in the industry we saw lures targeting candidates for jobs – in fact, man-in-the-middle attacks were intercepting emails based on job offers,” he said.</p> <p>Manky talks to Threatpost host Cody Hackett about the rise of web-based threats, the continuance of low-volume, high-risk, targeted ransomware attacks (particularly in the healthcare space) and other security threats of this quarter, in this week’s sponsored podcast episode.</p> <p><a href="http://traffic.libsyn.com/digitalunderground/fortinet_sponsored_podcast.mp3"><strong>Listen to the full podcast below or download direct here.</strong></a></p> <p><a href="http://iframe%20style=border:%20none%20src=//html5-player.libsyn.com/embed/episode/id/16431989/height/360/theme/legacy/thumbnail/yes/direction/backward/%20height=360%20width=100%%20scrolling=no%20%20allowfullscreen%20webkitallowfullscreen%20mozallowfullscreen%20oallowfullscreen%20msallowfullscreen/iframe"><div class="c-video-container"><iframe style="border: none" height="360" scrolling="no" src="//html5-player.libsyn.com/embed/episode/id/16431989/height/360/theme/legacy/thumbnail/yes/direction/backward/" width="100%"></iframe></div></a></p> <p><em><strong>Also, check out our <a href="https://threatpost.com/microsite/threatpost-podcasts-going-beyond-the-headlines/" target="_blank" rel="noopener noreferrer">podcast microsite</a>, where we go beyond the headlines on the latest news.</strong></em></p> <footer class="c-article__footer"> <div class="c-article__footer__container"> <div class="c-article__footer__col"> <a href="#discussion" class="c-button c-button--secondary">Write a comment</a> </div> <div class="c-article__footer__col"> <div class="c-article__sharing"> <p><strong>Share this article:</strong></p> <nav class="c-nav-sharing"> <div class="social-likes social-likes_notext" data-title="Phishing Lures Shift from COVID-19 to Job Opportunities" data-url="https://threatpost.com/phishing-lures-shifting-from-covid-19-to-job-opportunities/160143/" data-counters="yes" data-zeroes="yes"><div class="facebook" title="Share via Facebook"></div> <div class="twitter" title="Share via Twitter"></div><div class="linkedin" title="Share via LinkedIn"></div> <div class="reddit" title="Share via Reddit"></div> <div class="flipboard" title="Share via Flipboard"></div> </div> </nav> </div> </div> </div> <div class="c-article__footer__container"> <div class="c-article__footer__col"></div> <div class="c-article__footer__col"> <ul class="c-list-categories"> <li><a class="c-label c-label--secondary-transparent" href="https://threatpost.com/category/cloud-security/">Cloud Security</a></li> <li><a class="c-label c-label--secondary-transparent" href="https://threatpost.com/category/podcasts/">Podcasts</a></li> <li><a class="c-label c-label--secondary-transparent" href="https://threatpost.com/category/vulnerabilities/">Vulnerabilities</a></li> <li><a class="c-label c-label--secondary-transparent" href="https://threatpost.com/category/web-security/">Web Security</a></li> </ul> </div> </div> </footer> </div>