The Cybereason Nocturnus team is investigating multiple types of campaigns that specifically target regions most heavily impacted by the coronavirus with coronavirus-themed files and domains.
Attackers are abusing the pandemic for their benefit by manipulating people’s anxiety over the virus to trick them into downloading malware.
Consider social engineering awareness and training, which are key in preventing such attacks.
Disable macros and install an endpoint protection solution to help mitigate similar attacks.
Periodically proactively hunt in your environment for sensitive assets.
We highly recommend every customer enable the following features: