A WARNING FROM GOOGLE

Google reported Wednesday that it had tracked at least a dozen foreign government-backed groups attempting to use information around the COVID-19 pandemic to target cyberattacks at the healthcare sector and the public.

Shane Huntley, a member of Google’s Threat Analysis Group (TAG), wrote in a blog post that his team had seen these threat groups “using COVID-19 themes as lure for phishing and malware attempts—trying to get their targets to click malicious links and download files.”

A major target of these attempted attacks are international and national healthcare organizations, along with their staffers, with the threat groups in some cases sending emails with fake links to the login page of the World Health Organization (WHO). Google traced some of this activity to a cybercrime group known as “Packrat,” which is based out of South America.

Health sector not the only target: Huntley wrote that while Google was adding additional security protections to higher-risk accounts as a result of its findings, it was clear that “health organizations, public health agencies, and the individuals who work there are becoming new targets as a result of COVID-19.”

But healthcare groups were not the only target, as hacker groups attempt to benefit from the COVID-19 crisis.

“Our security systems have detected examples ranging from fake solicitations for charities and NGOs, to messages that try to mimic employer communications to employees working from home, to websites posing as official government pages and public health agencies,” Huntley warned.