Warning: Massive phishing attack targeting Indian users to start today

The Indian government has asked people to safeguard themselves against the massive phishing attack using Covid-19 as a bait. The phishing attack could mimic official communication on Covid-19 pandemic to lure people into clicking on the malicious link.

The government’s nodal agency for cybersecurity matters, CERT-In has issued a warning. The phishing campaign by malicious actors is likely to start today. You may receive a suspicious email from [email protected] CERT-In works towards protecting the citizens from cyber threats.

In an official statement, CERT-In said, “The phishing campaign is expected to use malicious emails under the pretext of local authorities in charge of dispensing government-funded COVID-19 support initiatives. Such emails are designed to drive recipients towards fake websites where they are deceived into downloading malicious files or entering personal and financial information.”

The advisory suggests that hackers are claiming to have over 2 million citizen email IDs. They plan to send mass emails with the subject line- ‘free Covid-19 testing for all residents of Delhi, Mumbai, Hyderabad, Chennai and Ahmedabad’. the email would be sent to coax users to disclose personal information.

The number of cyberattacks has doubled during the Covid-19 outbreak. The crisis has created an opportunity for hackers to launch cyberattacks as countries around the world are busy fighting the pandemic. They are using this as an opportunity to exploit organisation networks as well.

The cybersecurity agency wants people to not open any attachments in the unsolicited emails, even if they come from people in their contact list. Any unusual activity or attack should be reported to [email protected] with logs and email headers.