---
title: "Is COVID-19 Germinating More Cyber Attacks? | Phish Protection"
description: "Is COVID-19 Germinating More Cyber Attacks?: In fact, according to cyber intelligence firm CYFIRMA, there has been a stunning 600% increase in threat."
image: "https://phishprotection.com/og/blog/is-covid-19-germinating-more-cyber-attacks.png"
canonical: "https://phishprotection.com/blog/is-covid-19-germinating-more-cyber-attacks/"
---

Quick Answer

The short answer to that question is a definite yes. In fact, according to cyber intelligence firm CYFIRMA, there has been a stunning 600% increase in threat indicators between February and early March alone with hackers from all over the globe cooking up new schemes.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fis-covid-19-germinating-more-cyber-attacks%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Is%20COVID-19%20Germinating%20More%20Cyber%20Attacks%3F&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fis-covid-19-germinating-more-cyber-attacks%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fis-covid-19-germinating-more-cyber-attacks%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fis-covid-19-germinating-more-cyber-attacks%2F&title=Is%20COVID-19%20Germinating%20More%20Cyber%20Attacks%3F "Share on Reddit") [ ](mailto:?subject=Is%20COVID-19%20Germinating%20More%20Cyber%20Attacks%3F&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fis-covid-19-germinating-more-cyber-attacks%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2020/04/what-is-phishing-7690.jpg) 

The short answer to that question is a definite yes.

In fact, according to cyber intelligence firm [CYFIRMA](https://www.cisomag.com/cyberthreats-due-to-coronavirus/), there has been a stunning 600% increase in threat indicators between February and early March alone with hackers from all over the globe cooking up new schemes.

### Why Hackers are Upping their Game?

Hackers know that fear and disruption equals opportunity and there is nothing quite like a global pandemic to create plenty of both.

Cybercriminals are also well aware that many employees are now being forced to work from home and that puts poorly prepared businesses at risk of a wide variety of cyber-attacks, from home Wi-fi hacking and phishing to brutal DDoS assaults.

Businesses directly connected with the pandemic should be doubly careful by using [phishing protection](/) services. The nastiest cybercriminals of all are targeting hospitals and medical labs. Some are motivated by money, looking to extort hospitals or steal and sell valuable research. Others have more political aims (e.g. subverting national governments).

![What is phishing](https://media.mailhop.org/phishprotection/images/2020/04/what-is-phishing-7690.jpg) 

### How do hackers gain entry?

> “Zero-day phishing URLs have an average lifespan of just 12 hours before they’re added to blocklists. During that window, traditional signature-based filters are blind. Our real-time behavioral analysis catches these threats by pattern, not by signature - which is how we detect attacks that no database has seen yet.” - **Adam Lundrigan**, CTO, DuoCircle

Here are three tactics, with examples of how they have been used during the COVID-19 outbreak:

#### Sneaking under the gate

This is the closest method fitting the stereotype of the hacker as some sort of technical whizz probing for weaknesses.

For example, with remote working taking off, cybercriminals have realized they can strike gold through hacking relatively insecure home Wi-fi routers. An expo by [Bitdefender](https://labs.bitdefender.com/2020/03/new-router-dns-hijacking-attacks-abuse-bitbucket-to-host-infostealer/) showed us how hackers are targeting vulnerable types of router (namely Linksys and D-Link routers) to change DNS settings.

Basically, they are telling the routers to direct requests for certain popular sites (e.g. AWS and Disney) to a fake site. Before loading, a convincing info panel pops up offering advice about coronavirus. When the target clicks the download button, a chain of events plays out behind the scenes, ending with a program known as an ‘infostealer’ downloaded on the device. You don’t need much imagination to guess what that does (it even steals Bitcoins!)

#### Smashing down the gate

Or to be more accurate, holding shut the gate, for everyone. This is how a standard Distributed Denial of Service (DDoS) attack works. It uses the combined power of multiple computers to flood a network with connection requests, effectively taking it offline.

When the website in question is the US Health and Human Services department website, during a killer pandemic, you can see how this could be a problem.

[Bloomberg](https://www.bloomberg.com/news/articles/2020-03-16/u-s-health-agency-suffers-cyber-attack-during-covid-19-response) reported a suspected DDoS attack on the HHS in March although, according to secretary Alex Azar, the department: “had no penetration into our networks, we had no degradation of the functioning of our networks.”

It is still unclear whether this was a genuine DDoS attack or simply the result of an uptick in genuine requests overwhelming the HHS servers. Nevertheless the threat is clear to see.

#### Getting you to open the gate

This is the most effective method of all.

Coronavirus and mass panic creates a perfect storm for hacker phishing expeditions. The classic phishing technique abuses our fears and our trust to get us to download the type of malware mentioned above (and other nasties like ransomware).

The malware (or a link to it) is sent via an email disguised to deceive the recipient into opening it, either due to fear or simple lack of attention (“It said it was from HR, boss!”)

During this COVID crisis, phishing campaigns could be disguised as:

- An information update from the WHO, CDC or another trusted organization
- Urgent instructions from HR or the management
- Check application form from the Federal government
- COVID-19 vaccine announcement
- Low cost PPE (masks, gloves, etc.)
- Foreclosure warning from your bank

If that scares you, we have a solution: [Phish Protection](/) is ready to keep these attacks at bay permanently (it’s like PPE for anyone who handles emails!)

![What is a zero day attack](https://media.mailhop.org/phishprotection/images/2020/04/what-is-a-zero-day-attack-7691.jpg) 

### Solutions: Taking Back Control

Now that you know a little of what you’re up against, here are a few tips to keep you protected from the increase in hacker activity:

- Instruct remote employees to check the passwords of their home Wi-Fi routers when logging into the corporate network or cloud services (especially if it’s a D-Link or Linksys router).
- Public Wi-Fi should only be used for non-sensitive work and only if there is no other option.
- If possible, supply all remote workers with separate devices for work purposes
- Add remote workers to your VPN (if you don’t have a VPN, set one up)
- Create a patch/upgrade policy that works for everyone. As provider of [IT consulting Los Angeles](https://www.dcgla.com/) based DCG Inc. said in a recent blog post: ‘Security patches and updates play a key role in keeping your business safe against cyber threats.’
- Make sure employees take regular back-ups of their work. You may want to invest in a cloud back up service.
- Formulate a disaster recovery plan. Another post from provider of IT Services Los Angeles based DCG Inc. warns: ‘Alarmingly, over 90% of unprepared companies get out of business within a year of a data disaster.’
- Talk to Phish Protection about our cutting edge anti-phishing technology. We even offer a 60-day free trial.

The upheaval caused by COVID-19 is triggering a wave of new [phishing attacks](/) from global hackers. By following the above advice and keeping on your toes, you can ensure your systems don’t pick up a virus of a different kind.

### About Brent:

Brent is the CEO of DCG Technical Solutions Inc. DCG provides the specialist advice and IT Support Los Angeles area businesses need to remain competitive and productive, while being sensitive to limited IT budgets.

Brent has been featured in Fast Company, CNBC, Network Computing, Reuters, and Yahoo Business. He also leads SMBTN, Los Angeles, a MSP peer group that focuses on continuing education for MSP’s and IT professionals. DCG was recognized among the Top 10 Fastest Growing MSPs in North America by MSP mentor.

## Topics

[ Cybersecurity ](/tags/cybersecurity/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 3m  13,000 Singapore-based students affected as a threat actor hacked into their devices!  Aug 16, 2024 ](/blog/13000-singapore-based-students-affected-as-a-threat-actor-hacked-into-their-devices/)[  Intermediate 3m  The 2024 Multi-Nation Elections Need to Steer Clear of Highly Potent Cyber Menaces  May 9, 2024 ](/blog/2024-multi-nation-elections-cyber-threats-stay-vigilant/)[  Intermediate 6m  7 Commonly Overlooked But Crucial Security Threats That You Might be Ignoring  Feb 6, 2023 ](/blog/7-commonly-overlooked-but-crucial-security-threats-that-you-might-be-ignoring/)[  Intermediate 17m  9+ Cybersecurity Software Solutions For Businesses To Use  May 30, 2022 ](/blog/9-cybersecurity-software-solutions-businesses/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Is COVID-19 Germinating More Cyber Attacks?","description":"Is COVID-19 Germinating More Cyber Attacks?: In fact, according to cyber intelligence firm CYFIRMA, there has been a stunning 600% increase in threat.","url":"https://phishprotection.com/blog/is-covid-19-germinating-more-cyber-attacks/","datePublished":"2020-04-28T04:50:09.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2020-04-28T04:50:09.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/is-covid-19-germinating-more-cyber-attacks/"},"articleSection":"intermediate","keywords":"Cybersecurity","wordCount":1009,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2020/04/what-is-phishing-7690.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Is COVID-19 Germinating More Cyber Attacks?","item":"https://phishprotection.com/blog/is-covid-19-germinating-more-cyber-attacks/"}]}
```