For ordinary people, the COVID-19 coronavirus is a health risk. Unfortunately, some cybercriminals see the epidemic as an opportunity for a cyber attack. Now, more than ever, medical organizations need qualified information infrastructure protection.
Phishers set out to capitalize on common concerns about the COVID-19 threat. Of course, had there been no coronavirus topic, they would have used other current topics as bait. Opportunistic cybercriminals decided to attack the information infrastructure of various medical institutions, hoping that the accompanying overload of IT services would make it easier for them to break into the clinic network.
University Hospital in Brno
A clinic in the Czech city of Brno reported a cyberattack last week . She did not disclose the details of the incident; hospital representatives only admitted that the attack caused problems with the database. The institution can examine patients but cannot save medical data to the server. In addition, it was necessary to cancel several operations and redirect patients to other institutions. Brno University Hospital is one of the largest Czech coronavirus research centers, so incident management is a matter of life or death in its case.
US Department of Health and Humanitarian Aid
The United States Department of Health and Humanitarian Aid (HHS) also reportedly fell victim to a cyberattack on March 13. According to information published by Bloomberg, there was a massive DDoS attack designed to sabotage the normal operation of HHS servers, making it difficult to respond to the coronavirus pandemic. For an agency that coordinates efforts to combat the coronavirus, such an attack can do much more damage than usual.
Extorting employee login details in the UK
We 've been monitoring cases of coronavirus-related phishing for several weeks. The Sky News website recently described a rather unusual phishing campaign targeting medical personnel – more specifically, people who underwent internal IT inspections in a medical organization. The news reported on a coronavirus seminar being organized and included a registration link. This link led to a phishing page that mimicked Microsoft’s Outlook Web App. In this way, cybercriminals collected login details, but it is not yet known where and how they will use them.
Protection of healthcare organizations
We believe that in such a difficult time, healthcare professionals should be able to focus solely on their work – protecting the world from the coronavirus. That’s why Kaspersky has decided to make it easier for medical facilities to protect themselves against threats from the cyber world. We offer free six-month licenses for our solutions to healthcare companies around the world. The offer applies to the following products:
- Kaspersky Endpoint Security for Business Advanced – workstation protection solution,
- Kaspersky Endpoint Security Cloud Plus – a cloud version of the workstation solution that protects the company without burdening IT resources,
- Kaspersky Security for Microsoft Office 365 – comprehensive protection of Microsoft Office 365 collaboration services,
- Kaspersky Security for Virtual and Cloud Environments (Enterprise Server) – a product that allows you to secure your hybrid cloud infrastructure.