Home Cyber Crime US seizes more domains used in COVID-19 vaccine phishing attacks

US seizes more domains used in COVID-19 vaccine phishing attacks


US seizes more domains used in COVID-19 vaccine phishing attacks

The US Division of Justice has seized a fifth area identify used to impersonate the official website of a biotechnology firm concerned in COVID-19 vaccine growth.

The seized area claimed to promote the REGEN-COV2 emergency antibody-drug cocktail developed by Regeneron Prescribed drugs and authorised by the US Meals and Drug Administration for emergency COVID-19 therapy in November 2020.

“Nevertheless, the web site was fraudulent and as an alternative seems to have been used to gather the private info of people visiting the location, in an effort to use the data for nefarious functions, together with fraud, phishing assaults, and/or deployment of malware,” the Justice Division stated.

“People visiting the location now will see a message that the location has been seized by the federal authorities and be redirected to a different website for added info.”

The US Legal professional’s Workplace for the District of Maryland seized the usaregenermedicals[.]com — registered on January 21 utilizing the NameCheap registrar — after an HSI Cyber Operations Officer found its malicious nature. 

usaregenermedicals banner
Picture: US Division of Justice

4 different phishing domains seized in latest months

Since December 2020, the US Division of Justice seized 4 different domains utilized by fraudsters for numerous nefarious functions, together with fraud, phishing assaults, and/or infecting targets’ computer systems with malware.

Related actions result in area seizures of:

  • remdesivirmx[.]com: Seized on March 1, 2021, for amassing the private info of people who needed to purchase the Remdesivir antiviral drug.
  • modernatx[.]store: Seized on January 15, 2021, for claiming to promote purported COVID-19 vaccines (impersonated the official website of biotechnology firm Moderna)
  • mordernatx[.]com and regeneronmedicals[.]comSeized on December 18, 2020, for amassing the private information of people visiting the websites. (impersonated the websites of biotechnology corporations Moderna and Regeneron)

“The seizure of those 5 websites by the federal government has prevented third events from buying the names and utilizing them to commit further crimes, in addition to prevented third events from persevering with to entry the fraudulent websites of their current type,” the DoJ added.

“The Federal authorities is offering the vaccine freed from cost to individuals residing in the US. We’ll proceed to aggressively prosecute these fraudsters who search to prey on unsuspecting residents and their households,” Appearing US Legal professional Jonathan F. Lenzner said.

Over $365 million misplaced to COVID-19-related fraud

Based on stats supplied by the US Federal Commerce Fee (FTC), greater than 372,000 Individuals reported financial losses of more than $365 million following COVID-19-related scams because the begin of 2020, in accordance with stats supplied by the US Federal Commerce Fee (FTC).

Menace actors have additionally focused orgs related to COVID-19 vaccine research and concerned within the COVID-19 vaccine cold chain.

Chinese language-sponsored hacking teams coordinated attacks concentrating on vaccine analysis orgs in accordance with a joint public service announcement issued by the FBI and DHS-CISA.

The Russian-backed APT29 hacking group has additionally focused Canadian, UK, and US vaccine analysis organizations with the top purpose of harvesting mental property associated to vaccine testing and growth.

Final however not least, Microsoft took down domains used in COVID-19-related cybercrime, resembling harvesting delicate info, later for use in Enterprise E mail Compromise (BEC) assaults.

Source link