COVID-19 Archives - Abnormal Security

Subscribe to receive twice-monthly updates of the latest attacks we've detected in the wild:

Navy Federal Credit Union Phishing

In this attack, attackers are impersonating the US Navy Federal Credit Union in order to steal victims’ associated credentials.

Read more

DocuSign Phishing

In this attack, attackers impersonate a notification from DocuSign in order to steal those credentials from employees.

Read more

Microsoft Teams Impersonation

Attackers have been impersonating notifications from Microsoft Teams in order to steal the credentials of employees. Recently, Microsoft Teams has seen one of the largest increases in users as a result of

Read more

Healthcare Refund Phishing

In this attack, attackers are impersonating a major healthcare company claiming the recipient is entitled to a refund, but the link leads to a page that will steal sensitive information from the

Read more

IRS Impersonation

In this attack, attackers are impersonating the IRS claiming that they have the recipient’s financial stimulus check, but need the recipient to verify their records on a landing page that will steal

Read more

Paycheck Protection Program Credential Phishing Attack

In this attack, attackers are impersonating the a representative of the CARES Act claiming they need the recipient’s signature for Paycheck Protection Program documents. Clicking on the link for the mentioned file

Read more

Payroll Malware

In this attack, attackers are posing as outsourced HR contractor informing employees of additional stimulus being provided to them and asking recipients to view the latest Payroll Report. The link to the

Read more

Zoom Malware

In this attack, attackers are posing as external employees and asking recipients to schedule a Zoom meeting with them by checking their schedule in an attachment that almost certainly contains malware.

Read more

Abnormal Security Detects 90% Rise in COVID-19 Email Attacks, 150% Increase in COVID-19 Spam

Malicious threat actors are using COVID-19 as a means to exploit users in recent attacks including, but not limited to, credential phishing, malware, and payroll fraud. There has been a steadily increasing

Read more

COVID-19 Credit Card Phishing

In this attack, attackers are impersonating a major credit card provider and attempting to deceive victims into divulging their login credentials by sending COVID-19-themed emails that direct recipients to convincing landing pages.

Read more

COVID-19 Payroll Fraud

In this attack, attackers are impersonating an HR and payroll services company to attempt to steal those credentials from unsuspecting employees under the guise of changes being made due to COVID-19 and

Read more

Stimulus Payment Attack

In this attack, attackers are impersonating a major financial institution claiming to have received the recipient’s stimulus check, but needing the recipient to verify their account to release the funds. The attackers

Read more