DarkHotel: The World Health Organization (WHO) has been dealing with a significant increase in cyber-attacks while also attempting to deal with the current COVID-19 pandemic. According to officials at the WHO, the number of cyber-attacks targeting the agency has doubled recently. One instance began on March 13th, in which attackers set up a malicious webpage designed to mimic the WHO’s internal mail system in an attempt to harvest credentials of WHO employees. An unnamed source has claimed that the threat group DarkHotel could be the perpetrators of the ongoing espionage campaign against the WHO. DarkHotel is believed to have been active in cyber-espionage campaigns dating as far back as 2007. The group gained their name for targeting high ranking government and corporate officials through attacks through the Wi-Fi at luxury hotel chains. The group is also known to utilize a number of zero-day exploits, including one through Internet Explorer, which was leveraged through malicious Office documents.
Binary Defense was contacted by an individual who was recently scammed out of $4,000 through