Vaccine phishing scams rise by over 500 per cent

By Leila Hawkins
Research by Palo Alto Networks reveals dramatic surge in vaccine-related phishing attacks...

Vaccine-related scams have risen by 530 per cent, according to a new report by Unit 42, the Palo Alto Networks threat intelligence team. 

The research looked at vaccine-lated phishing attacks between December 2020 and February 2021. During the same period, phishing attacks relating to and/or targeting pharmacies and hospitals rose by 189 per cent.  

The report documents what Unit 42 has called a cyber crime “gold rush” aimed at taking advantage of COVID-19 in every way possible. It shows how cyber criminals are having great success during the pandemic as people are constantly looking for information on the virus, treatments, vaccines and the economic crisis.

To compile the research, Unit 42 generated sets of specific keywords that served as indicators for each COVID-related topic, and applied keyword-matching to determine which phishing URLs were related to each topic. This revealed that cyber criminals have been continuously evolving their tactics to adapt to the changes of the pandemic. 

While the focus in early 2020 was on test kits and PPE, this has now shifted to the vaccine approval process, and most recently, immunisation clinics. 

The report shows how cyber criminals have set up fake websites to steal user credentials, including a fake Pfizer and BioNTech website. The phishing page asks users to log in with their Office 365 credentials, supposedly to sign up for the vaccine. 

One particular phishing website used an increasingly common technique known as “client-side cloaking” - asking users to click the "login" button to evade automated phishing detectors.  

Microsoft is the brand most targeted by attackers, with fake Microsoft pages set up by attackers to steal information from employees at organisations such as Walgreens in the US, Pharmascience in Canada, and Junshi Biosciences in China. 

As the vaccination rollout continues, it is predicted that phishing attacks related to vaccine distribution will continue to rise worldwide.

The report also contains recommendations for both individuals and organisations to protect themselves from phishing attacks. 

Share

Featured Articles

Global Health Funding 'Facing Post-Pandemic Challenges'

IHME report highlights shifting priorities and economic pressures affecting global health financing, despite increase in funding since pre-COVID levels

The Merck Group: Pharma's History & Innovation in India

Welcome back to part two of our exploration of The Merck Group's history and investment in China and India, with this part focusing on innovation in India

How CVS Health is Rising to the Omnichannel Challenge

US healthcare company CVS Health is reshaping its supply chain to meet the omnichannel needs of its customers

Kinaxis: Pharma Seeing Euro-wide Supply Chain Challenges

Procurement & Supply Chain

Healthcare Digital Transformations Stymied by Data Silos

Digital Healthcare

McKinsey: Brain Health Underfunding 'a Global Concern'

Digital Healthcare