Following the news that Hackers ‘manipulated’ stolen COVID-19 vaccine data before leaking it online, Webroot, a market leader in cyber resilience, has released new statistics demonstrating how far cybercriminals are prepared to leverage the pandemic to their advantage.
In the month following the first UK/global Pfizer vaccine dose was given to 90-year-old Margaret Keenan, Webroot’s Real-Time Anti-Phishing protection system found a rise in malicious URLs and terms to target vulnerable people, using subjects like the vaccine, COVID Cures and travel to compel them to click on malicious links and open illegitimate emails. This includes:
- Over 4,500 new suspicious domains found, which contained a combination of words relating to ‘COVID-19,’ ‘Corona,’ ‘Vaccine,’ ‘Cure COVID’ and more
- 934 domains specifically included the word ‘Vaccine’ within the title
- 611 domains contained a miss-spelling of the word ‘Vaccine’
- 2,295 contained ‘COVID’ in the title
- 622 domains contained the words ‘Test’ or ‘Testing’ in their title
- Domain titles were extremely concerning, including titles such as: ‘COVID Validator,’ ‘Testing Update,’ ‘COVID Travelcard,’ ‘Private Vaccine,’ among others.
The total use of the word ‘vaccine’ found within suspicious domain names between the 8th December and 6th January was cited as a 336% increase when compared with the month of March 2020. Webroot also observed that there was an 94.8% increase during the 8th December to 6th January time period, when compared with the previous 30 days leading up to this first date.