As if the fear of the Coronavirus outbreak weren’t enough, there’s a new way that the virus is impacting humans: through email cyber-attacks.

The method of contamination takes a trusted name, the World Health Organization, and uses it to disperses malware in the form of the “AgentTesla Keylogger”.

Hackers have their own email campaign running to feed on public fear. The campaign focuses on a Coronavirus conspiracy theory and indicates that the email contains information about unknown cures. When someone clicks on the attachment contained in the email, they are unknowingly accepting the malware.

One campaign goes as far as using a DocuSign page where users enter personal information in the hopes of being sent information on the “cure”.  A second method is using a Microsoft Word attachment to send users to a fake Microsoft Office website where the World Health Organization name appears to give additional credibility.  From here, more personal information is input by the user.

While the AgentTesla Keylogger is one virus deployed, there are multiple others. A keylogger tracks all input from the unsuspecting user, and basically gives away every bit of information that the individual enters into their computer from that point forward.

Be on high alert if you receive an email with information about the virus and pause before clicking or providing personal or business information.  Even the simplest of intentions can lead to a much larger “outbreak” for an organization.

For full post see