72 Percent of COVID-related Cyberattacks are performed via Fake Emails

Cyberattacks and cybersecurity has been the buzzword for enterprises, organizations and people around the world in 2020. With drastic changes to the conventional functioning of workplaces due to COVID-19 pandemic, cybersecurity emerged as the biggest challenge. Not just that, but a new study says, as cyberattacks increased in magnitude globally including in India, cyber criminals now prefer to use COVID-19 in scamming attacks that focus on fake cures and donations, compromising email accounts in Indian organizations. The information is accumulated from the report generated by Barracuda Networks, a cloud-enabled security solutions provider. The repost states that 72 percent of COVID-19-related attacks today are scamming or spear-phishing which is the fraudulent practice of sending emails ostensibly from a known or trusted sender in order to induce targeted individuals to reveal confidential information.

In comparison, 36 percent of overall attacks were found coming from scammers. The report says "Nearly 13 percent of all spear-phishing attacks come from internally compromised accounts, so organizations need to invest in protecting their internal email traffic as much as they do in protecting from external senders".

Business email compromise (BEC) attacks are increasing as cybercriminals see how lucrative this type of attack can be. Attackers' exploitation of fears around the

Nearly 13 percent of all spear-phishing attacks come from internally compromised accounts

COVID-19 pandemic shows how quickly they can adapt to current events. "A massive 71 percent of spear-phishing attacks include malicious URLs, but only 30 percent of BEC attacks included a link," the findings showed.

"Hackers using BEC want to establish trust with their victims and expect a reply to their email, and the lack of a URL makes it harder to detect the attack". According to Murali Urs, Country Manager (India), Barracuda Networks, cybercriminals adapt very quickly when they find a new tactic or current event that they can exploit. "Their response to the COVID-19 pandemic proved it too well. The organizations in India today are facing increasing threats from highly-targeted phishing attacks," he said.

Hackers are using multiple tactics to disguise malicious links and avoid detection by URL protection solutions. The report took an in-depth look at new tricks being used to successfully execute attacks - spear phishing, business email compromise, pandemic-related scams, and other types. "Business email compromise (BEC) makes up 12 percent of the spear-phishing attacks analyzed, an increase from seven percent in 2019," the report said. Talking about strengthening the cybersecurity aspect, Murali further stated "The organization must invest in technology to block attacks and provide training to help people act as a last line of defense and avoid falling victim to scammers' latest tricks".