Working from home? Be Aware of COVID-19 Scams & Phishing Activity
Be Cyber-Alert
In a bid to slow the spread of the coronavirus through social distancing measures, many Australian’s are now finding themselves working from home offices or the kitchen table. This change in our work locations is making us more vulnerable to cybersecurity threats.
The Australian Cyber Security Centre (ACSC), has warned of scams and phishing attempts, as criminals try and take advantage of the disruption.
Scamwatch, run by the ACSC, has also received 94 reports of COVID-19 scams since the beginning of the year, with numbers expected to rise.
Karl Hanmore, the acting head of the Australian Cyber Security Centre — part of the Australian Signals Directorate — said there are already examples of coronavirus-inspired cybercrime.
“I’d be suggesting people be cyber-alert but not cyber-alarmed,” he said.
“Most importantly, don’t click on links you receive via text message or email, especially if they’re around the coronavirus.”
Phishing scams using COVID-19-themed text messages are already circulating in Australia.
One of them appears to be sent from “GOV” and shares a link that claims to help people find out where they can get tested for coronavirus.
But the link and the sender are fake. Clicking on the link could install malware designed to steal your banking details.
“That’s criminals trying to steal your banking details at a time when you’re least able to protect yourself,” says Mr Hanmore.
In addition, the Australian Competition and Consumer Commission are also reporting that other scams include people receiving misinformation about cures for coronavirus and investment scams claiming coronavirus has created opportunities to make money.
Protect your business – Installing good cybersecurity measures now is the best way to address the cyber threat.
The ACSC also recommends considering the following proactive strategies for your business:
- Ensure that your systems, including Virtual Private Networks and firewalls, are up to date with the most recent security patches (see guidance for Windows and Apple products).
- Increase your cybersecurity measures in anticipation of the higher demand on remote access technologies, and test them ahead of time.
- If you use a remote desktop client, ensure it is secure.
- Ensure your work devices, such as laptops and mobile phones, are secure.
- Implement multi-factor authentication for remote access systems and resources (including cloud services).
- Ensure that you are protected against Denial of Service (DoS) threats.
- Ensure that your staff and stakeholders are informed and educated in cyber security practices, such as detecting socially-engineered messages.
- Ensure that staff working from home have physical security measures in place. This minimises the risk that information may be accessed, used, modified or removed from the premises without authorisation.
For the latest updates and warning on scams, or to report an incident, visit cyber.gov.au
If you have any queries or concerns regarding your personal or business finances, please don’t hesitate to contact us.
The content for this article was sourced from:
https://www.abc.net.au/news/science/2020-03-23/coronavirus-phishing-scams-emails-texts-australians-vulnerable/12079486
https://www.scamwatch.gov.au/news/covid-19-coronavirus-scams
https://www.cyber.gov.au/news/cyber-security-essential-when-preparing-covid-19