Omicron leads to 500% surge in Covid test email scams

Cloud security company Barracuda says it has seen a surge in ‘Covid-test’ related phishing attacks that cyber criminals have exploited through the pandemic

The Omicron variant has contributed to a 521 per cent rise in Covid test related scam emails between October 2021 and January 2022, according to Barracuda Networks, provider of cloud-enabled security solutions

In its January Threat Spotlight report, Barracuda researchers concluded that this surge in ‘Covid-test’ related phishing attacks is just the latest edition of Covid-19 themed phishing attack campaigns that cyber criminals have exploited throughout the course of the pandemic.

In fact, in March 2020, when Covid-19 started to spread rapidly, Barracuda researchers observed that Covid-related phishing attacks jumped 667 per cent. Similarly, as vaccination programmes began to roll out at the start of 2021, so too did a new wave of vaccine-related email threats.

This time round, scammers are using some different tactics to get the attention of their victims. One of the most common scams include offers to sell counterfeit or unauthorised Covid tests, and other medical supplies such as masks or gloves.

Other scams involve the use of fake notifications of unpaid orders for Covid tests, where scammers provide a PayPal account to receive payments to complete the purchase of rapid Covid tests. Also, some scammers have been impersonating labs, testing providers or individual employees sharing fake Covid test results.

Fleming Shi, CTO for Barracuda Networks, says: "Capitalising on the chaos of the pandemic is not a new trend in the world of cybercrime. But, with constantly evolving tactics, and new trends to latch on to, it’s easy to see why scammers are not giving up on this trick.

“Just like the threat of Covid-19, pandemic-themed scams are not going to disappear overnight, but fortunately there are a number of tactics that businesses and consumers can employ to ensure they remain protected.

“For a start, businesses must leverage sophisticated email security which utilises artificial intelligence to detect and block email attack tactics that are designed to bypass basic gateways and spam filters. Providing employees with up-to-date user awareness training about Covid-related phishing, seasonal scams, and other potential threats is also a vital cyber crime prevention method which must be adopted.”


Featured Articles

How secure is sensitive data stored in the cloud?

A Cloud Security Alliance (CSA) survey has found 67% of organisations store sensitive data in public cloud environments, but how secure is it?

CYBER LIVE LONDON: Day 2 highlights of the hybrid tech show

We take a look at highlights of the different stages at the Tech Live London show, including insights from Claroty, SalesForce and Oracle

TECH LIVE LONDON: An overview of the hybrid technology show

We take a look at the first day of Tech Live London with insights from technology leaders from companies such as IBM, Microsoft and Vodafone

Does a cashless society mean higher risk of fraud?

Cyber Security

5 minutes with Gary Brickhouse, CISO of GuidePoint Security

Cyber Security

CTO at Passbolt explains the importance of password managers

Application Security