• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • Jobs
  • Career
    • Cyber Security Training
    • Work from Home
    • Cyber Security Analyst
    • Remote Work – Six Ways to Keep Your Data Safe When Working Remotely
  • Field Guide
  • Newsletter Signup
  • Deals
  • News
AskCyberSecurity.com

AskCyberSecurity.com

Cyber Security News & Information

  • Home
  • Data Privacy
    • Gamers
    • Government Cyber Security
      • Legislation
      • Standards
        • What are the risks of computer security?
        • Medical Cyber Security
    • Social Media
  • Security
    • Data Breaches
    • Scams
    • Malware
  • Software
    • Apps
    • Web Browsers
  • Glossary
    • Cyber Security Acronyms
  • About Ask Cyber Security
    • Authors
    • Contact Us
  • VPN
    • How Do I Know If My VPN is Working?
    • Best Free VPN iPhone
    • Why Use a VPN?
    • NordVPN vs IPVanish
    • Private Internet Access Download
    • Best VPN for Streaming
      • TikTok VPN
    • VPN Porn
    • Computer Security Software – What You Really Need
  • Tutorials
  • ChatGPT
    • Does ChatGPT Save Data?
AskCyber Home » News » News » FormBook Malware Exploits Coronavirus Outbreak Fears

FormBook Malware Exploits Coronavirus Outbreak Fears

2020-03-10 by Max

FormBook Malware

FormBook Malware Exploits Coronavirus Outbreak Fear Steals Screenshots and Keystrokes

Another Coronavirus themed phishing email campaign is sending FormBook malware to victims. This cyber attack tries to trick the reader into opening an email attachment disguised as Word Health Organization (WHO) information about the Coronavirus outbreak. If the victim opens the zipped email attachment it executes a file that begins a malware download and infects their device. FormBook malware is an info-stealer and has been used as spyware. This FormBook malware campaign captures screenshots of the infected computer’s desktop, read information that is copied to the clipboard, and records keystrokes. The malware can also clear the infected device’s browser cookies, downloading files, and executing them.

The newest phishing email campaign is disguised with informative and even colorful graphics designed to look like they are sent by the World Health Organization. The graphics, seen on Malware Hunters Twitter feed, even tell the reader how many gloves and masks have been used to fight the disease. The reader is also encouraged to read a pdf file to learn more information. The email has a zipped file attachment that supposedly offers stats and updates on COVID-19. The attachment contains a malicious executable called “MyHealth.exe,” which is disguised as an Excel spreadsheet, the researchers report. The Adobe .pdf is of course weaponized. Opening the attachment begins a malware download that infects your computer with FormBook malware. The reader is also encouraged to send a rely email to learn about grant money. Replying to any scam email only confirms to the hacker that the receiving email address is valid and monitored.

RELATED READ: Remote Work – Six Ways to Keep Your Data Safe When Working Remotely

FormBook malware is an information-stealer malware that was first seen in 2016. FormBook malware was used previously to impersonate DHL in a phishing campaign. It was also used to exploit a pair of Microsoft Office exploits (CVE-2017-0199 and CVE-2017-11882) to spy on the infected systems.

Coronavirus Phishing Emails

Since January 2020, over 4,000 new coronavirus-related domain names were registered globally. Of those with websites, three percent are malicious and another five percent of the websites are suspicious. This is according to cyber security researchers at Check Point. In that same time, there has been an increase in the number of phishing and malware campaigns using delivering Emotet malware. Emotet is the most common malware used in cyber attacks against local governments and small businesses.

This is not the first or even second wave of new Coronavirus phishing email and malware. COVID-19 themed phishing campaigns started in Japan with similar, supposedly useful public health information send vis phishing emails. They were accompanied by email attachments that if opened would launch malware attacks.
London University launched an online course to help educate the public about the Coronavirus. When in doubt visit the World Health Organization website for virus information. Johns Hopkins University has an up-to-date map of all new cases.

Now is the time to educate employees increased cyber security related fraud targeting employees and consumers. Hackers are exploiting people’s fears about the COVID-91 outbreak as it spreads worldwide. Anyone can be targeted by a Coronavirus themed email that is cleverly disguised with supposedly helpful information, attachments, and maps. The emails are either phishing emails, malware downloads, or both.

  1. Read our guide on how to spot a phishing email so you can learn how to scrutinize and protect yourself against phishing email, spear phishing emails, and malicious email attachments
  2. Download a quality antivirus app to protect all of your computers and phones
  3. Use a quality VPN to protect your data

Filed Under: News

About Max

Max is a Data Privacy Coordinator at a major global law firm and a science fiction author residing in the Philadelphia area. He has been writing for https://www.askcybersecurity.com since early 2017.


LinkedInTwitterFacebook

Primary Sidebar

Subscribe to Our Free Newsletter

We Don't Share or Sell Your Info

Web Browsers

Where Are My Saved Passwords in Chrome?

Google Removes 70 Malicious Browser Add-ons from Chrome Web Store

Firefox 75 Reports Your Browser Settings to Mozilla

Categories

Cyber Security Field Guide

Computer Security While TravelingGet Our Cyber Security Field Guide - Available on Amazon!

Recent Posts

Security Marketing Manager – Remote

Sr. Associate, Cybersecurity Architect – Pfizer

Strategic Customer Success Manager – Cybersecurity – Opportunity for Working Remotely

Top 20 Passwords Leaked on Dark Web

ISU Cybersecurity Leader Job Opening

Cyber Security News

Top 20 Passwords Leaked on Dark Web

… [Read More...] about Top 20 Passwords Leaked on Dark Web

Apple Warns of Actively Exploited Zero-Day Flaw

… [Read More...] about Apple Warns of Actively Exploited Zero-Day Flaw

IRS Stops Facial Recognition System for Online Access

… [Read More...] about IRS Stops Facial Recognition System for Online Access

National Cybersecurity Alliance Announces Data Privacy Week

… [Read More...] about National Cybersecurity Alliance Announces Data Privacy Week

More Cyber Security News

Tags

amazon Android Apple bitcoin China chrome CISA credit card DarkSide DHS DOJ Equifax Europe Facebook facial recognition FBI Firefox FTC games GDPR Google Government hacker identity theft India iPhone Iran IRS LinkedIn Microsoft North Korea PayPal phishing phishing email ransomware REvil Russia smartphone T-Mobile TikTok tutorial VPN WhatsApp WiFi Windows

Government

CBP Looks to Access Airline Passenger Data

FTC Releases Cyber Threat Video Playlist

Malware Found on US Government Funded Phones

UK NCA Reaches Out to Youth to Deter Cybercrimes

More Posts from this Category

Footer

Menu

  • Home
  • About
  • Authors
  • Newsletter Signup
  • PRIVACY POLICY

Search

Why Use a VPN?

NordVPN vs IPVanish VPN Review

NAVIGATION

  • Data Breaches
  • Data Privacy
  • Gamers
  • Scams
  • Malware

MEMBER NJCCIC

New Jersey Cybersecurity & Communications Integration Cell

STAY CONNECTED

  • Facebook
  • Instagram
  • Pinterest
  • YouTube
  • Twitter
  • RSS

Copyright © 2023 · AskCyberSecurity.com · METRONY, LLC

Go to mobile version