Europol and Interpol have joined the list of cross-border law enforcement organisatinos who have set out to tackle Covid-19 scams and misinformation campaigns.
“With a huge number of people teleworking from home, often with outdated security systems, cyber-criminals prey on the opportunity to take advantage of this surreal situation and focus even more on cyber-criminal activities,” Europol executive director Catherine De Bolle wrote in the organisation's latest security advisory.
The announcement comes a week after Europol published a detailed report on how criminals modified their strategies to make the most of the pandemic scare, based on information it received from EU member states.
The report, published on 27 March, listed six factors that prompted changes in Covid-related crime and terrorism: high demand for certain goods, protective gear and pharmaceutical products; citizens increasingly teleworking, relying on digital solutions; increased anxiety and fear that may create vulnerability to exploitation; decreased mobility and flow of people across and into the EU; limitations to public life, making some criminal activities less visible and displacing them to home or online settings; decreased supply of certain illicit goods in the EU.
The impact of the pandemic on cyber-crime is “most visible and striking” compared to other criminal activities, with criminals adapting quickly to capitalise on the anxieties and fears of their victims, found the European policing agency’s latest report.
“Phishing and ransomware campaigns are being launched to exploit the current crisis and are expected to continue to increase in scope and scale,” the report said.
Meanwhile, Interpol has warned that ransomware attacks have started targeting hospitals and other institutions who are on the frontlines of the fight against the coronavirus braving unprecedented physical dangers.
“Interpol’s cyber-crime threat response team at its Cyber Fusion Centre has detected a significant increase in the number of attempted ransomware attacks against key organisations and infrastructure engaged in the virus response. Cyber-criminals are using ransomware to hold hospitals and medical services digitally hostage; preventing them from accessing vital files and systems until a ransom is paid,” said the advisory.
The global policing organisation has issued a purple notice, alerting all its 194 member countries about the heightened ransomware threat.
Though despicable, the attack on medical facilities at this point of crisis is expected, observed Joseph Carson, chief security scientist at Thycotic.
“Cyber-criminals will always attempt to take advantage of critical situations and Covid-19 is no different,” he said.
“At a time when medical staff are focused on saving lives, under extremely high stress and overworked they become vulnerable to cyberattacks that take advantage of medical staff’s trust… In the cyber-criminal’s mind time is money, but for medical staff time means saving lives.”
There are individual actions from regulators across the world, but we are yet to see a coordinated effort, David Emm, principal security researcher at Kaspersky, told SC Media UK.
“There are some well-established initiatives, including from Interpol, Europol and national governments (eg the establishment of the NCSC in the UK) and including collaboration with industry.” Kaspersky works with Interpol on tackling cross-border cyber-crime.
However, there are limitations on what governments and regulatory bodies can do in tackling the menace, noted Emm.
“Initiatives from government and industry are important in terms of disseminating information to organisations and individuals and developing cyber-security skills among law enforcement agencies. However, most of the Covid-related phishing and malware relies on social engineering – tricking people into doing something that compromises their security, or that of the organisation they work for,” he said.
“So it’s vital that we all take steps to reduce the risk of falling victim to cyber-attacks. This includes businesses raising awareness and cultivating a security culture and all of us as individuals protecting and updating our devices, not responding to unsolicited messages and not forwarding information that we’re unsure of.”
The cyber-security industry is doing its bit to help alleviate the crisis, said Carson.
“Cyber-security professionals have joined together to help hospitals with volunteer cyber defenders to help make them more resilient to such cyber-attacks and security professional peers such as Daniel Card and Lisa Forte are leading the defence for the UK NHS,” he said.
F-Secure chief research officer Mikko Hyppönen tweeted a public warning to ransomware gangs, asking them to stay away from medical organisations. “If you target hospital computer systems during the pandemic, we will use all of our resources to hunt you down,” he wrote.
“Everything we do to keep critical systems running saves lives and security professionals working in the background to ensure those critical systems are running at 100 percent are the unsung heroes right now working behind the scenes under extreme pressure and stress,” added Carson.