The Cybersecurity and Infrastructure Security Agency (CISA) recently put out a set of precautions that individuals can take in response to the coronavirus epidemic. Phishing scammers will continue to exploit fear and uncertainty surrounding the virus, and with phishing attempts becoming more sophisticated and targeted than ever before, CISA disseminated a list of best practices to help individuals remain vigilant.
Some scams are more conspicuous than others. If the email is poorly written or it contains a suspicious attachment, for instance, better to err on the side of caution and delete or report the email. Some are less obvious, so it should be a general rule of thumb to never reveal personal or financial information in an email – especially if it’s an email that solicits this sort of information. CISA advises the public to use trusted sources to stay up-to-date on this rapidly evolving matter, in addition to reviewing its Risk Management for COVID-19 webpage.
Cyber actors may send emails with malicious attachments or links to fraudulent websites to trick victims into revealing sensitive information or donating to fraudulent charities or causes. Exercise caution in handling any email with a COVID-19-related subject line, attachment, or hyperlink, and be wary of social media pleas, texts, or calls related to COVID-19.