The Covid-19 Pandemic has been an unprecedented time, with talk of a “new normal” leaving many people unsure of just what normal even means. This uncertainty has opened a new way for cybercriminals to target people, capitalising on people’s fear of the virus, and confusion over the latest updated. In April 2020 , Google claimed to be blocking over 240 million Covid-19 based spam emails each day and 18 million malware and phishing attempts.
The latest variant, Omicron, has launched a new wave of uncertainty, and today Which? has reported a new Phishing email that appears as an update from the NHS asking recipients to apply for a new kind of PCR test that can detect the new Covid strain. Of course, this is not from the NHS, but from a duplicate site that appeared a couple of days ago. The email looks more convincing than many Phishing attempts, and with the current state of fear and uncertainty over this new variant, it could be easy to mistake it as legitimate.
Two versions of the email have been reported, one that simply shows as having come from “NHS” and another from contact-nhs[AT]nhscontact.com, both branded with the NHS logo, although the second email version less convincingly so, containing a few paragraphs encouraging recipients to apply for this new test, and a link that leads to a near perfect replica of the NHS website ‘healt-service-nh.com’.
Those who follow the link will be asked to fill in personal information including name, address and contact numbers, and then asked to fill in bank details for the small “delivery fee”, so this attack is targeting personal information and bank details. If this is successful, these hackers would then be able to use this information to commit identity fraud and access your bank.
Contact Think Connect to find out more about how you can spot Phishing emails, and how we can help protect you and your business from Cyber attacks.