米国国土安全保障省（サイバー・インフラ安全保障局）と英国サイバーセキュリティセンターは共同で、COVID-19の感染拡大に乗じたサイバー攻撃の増加に警告していますね

こんにちは、丸山満彦です。

米国国土安全保障省（サイバー・インフラ安全保障局）（ Cybersecurity and Infrastructure Security Agency (CISA) ）と英国サイバーセキュリティセンター（National Cyber Security Centre）は共同で、COVID-19の感染拡大に乗じたサイバー攻撃の増加に警告していますね。

● CISA

・2020.04.08 Alert (AA20-099A) COVID-19 Exploited by Malicious Cyber Actors

● NCSC

・2020.04.08 Advisory: COVID-19 exploited by malicious cyber actors

・[PDF] Advisory: COVID-19 exploited by malicious cyber actors

-----

● Avast

・2020.04.10 Remote workers targeted for cyberattacks

● CISA

・2020.04.08 Alert (AA20-099A) COVID-19 Exploited by Malicious Cyber Actors

-----

Summary

This is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC).

This alert provides information on exploitation by cybercriminal and advanced persistent threat (APT) groups of the current coronavirus disease 2019 (COVID-19) global pandemic. It includes a non-exhaustive list of indicators of compromise (IOCs) for detection as well as mitigation advice.

Both CISA and NCSC are seeing a growing use of COVID-19-related themes by malicious cyber actors. At the same time, the surge in teleworking has increased the use of potentially vulnerable services, such as virtual private networks (VPNs), amplifying the threat to individuals and organizations.

APT groups and cybercriminals are targeting individuals, small and medium enterprises, and large organizations with COVID-19-related scams and phishing emails. This alert provides an overview of COVID-19-related malicious cyber activity and offers practical advice that individuals and organizations can follow to reduce the risk of being impacted. The IOCs provided within the accompanying .csv and .stix files of this alert are based on analysis from CISA, NCSC, and industry.

Note: this is a fast-moving situation and this alert does not seek to catalogue all COVID-19-related malicious cyber activity. Individuals and organizations should remain alert to increased activity relating to COVID-19 and take proactive steps to protect themselves.

-----