The UK National Cyber Security Centre (NCSC), US Department of Homeland Security (DHS), and US Cybersecurity and Infrastructure Agency (CISA) issued a joint advisory warning that cybercriminals are engaging in coronavirus-themed scams, seeking to take advantage of the unusual circumstances across the world.
“Malicious cyber actors are adjusting their tactics to exploit the COVID-19 pandemic, and the NCSC is working around the clock with its partners to respond,” said Paul Chichester, director of operations at the NCSC. Security researchers have observed an increasingly common behavior from scammers — scanning for vulnerable VPNs and remote working software to exploit.
“Malicious cyber actors are taking advantage of [the] mass move to home working by exploiting a variety of publicly known vulnerabilities in VPNs and other remote-working tools and software,” the joint advisory said.
The agencies urged people to remain vigilant for any threats and monitor for unusual activity as workers across the world settle into new routines at home.