During the COVID-19 pandemic, criminals have flagrantly exploited unemployment and relief payments for fraud. Now, the new American Relief Act is expected to be passed this week and will send the next wave of much needed relief checks to Americans. Even before the stimulus package has officially been approved, criminals have already begun campaigns to steal information and money from victims, spread malware that could lead to ransomware, and receive fraudulent payments from government programs. Researchers have seen emails asking citizens to provide information to the Internal Revenue Service (IRS) in order to receive their stimulus check. The email asks victims to download an Excel spreadsheet that once downloaded, launches Dridex malware. Dridex, which has been around as long as 2015, specializes in stealing a victims banking credentials but has also been used as an all-purpose delivery vehicle for other malware, including ransomware.
Written by: Nataliia Zdrok, Threat Intelligence Analyst at Binary Defense Russia’s invasion of Ukraine increased