Although this scam mostly targets people living in the UK, it is very likely that similar campaigns will focus on citizens in the US and other countries soon. For individuals who may have fallen victim to one of these scams, the UK Information Commissioner’s Office suggests taking the following precautions:

• Report all lost or stolen documents, such as passports, driving licenses, credit cards and cheque books to the organization that issued them.
• Inform your bank, building society and credit card company of any unusual transactions on your statement.
• Request a copy of your credit file to check for any suspicious credit applications.
• Report the theft of personal documents and suspicious credit applications to the police and ask for a crime reference number.
• Contact CIFAS (the UK’s Fraud Prevention Service) to apply for protective registration. Once you have registered you should be aware that CIFAS members will carry out extra checks to see when anyone, including you, applies for a financial service, such as a loan, using your address.

Furthermore, additional phishing campaigns that take advantage of personal information accessed in the aforementioned COVID scam could be carried out. People living in the US should also inform their banks quickly if they have provided their personal identity information and bank account numbers to a suspicious website. If a Social Security Number (SSN) has been collected as well, it is important to report identity theft to the Social Security Administration and the Internal Revenue Service (IRS) to obtain an identity protection PIN for filing income tax returns.

Source: https://www.bleepingcomputer.com/news/security/beware-of-this-active-uk-nhs-covid-19-vaccination-phishing-attack/