COVID-19 Map Malware

May 27th, 2020

As the university leadership has been closely following events and recommendations surrounding the outbreak and spread of the novel coronavirus (COVID-19), it is important to not only stay physically healthy, but online as well. 

Security concerns have surfaced surrounding a popular website showcasing the total count of COVID-19 cases around the world. While the legitimate website appears safe at this time, threat actors have crafted malicious copies that mimic or load data from the legitimate virus map site. The malicious copies could be hosted on malicious websites, attached to emails, or be distributed by other methods. Once executed, the malware activates a list of malicious software and begins to steal browsing history, cookies, ID/passwords, cryptocurrency, and more.

Covid-19 map - malware example

ASU endpoints are protected from this specific malware by CrowdStrike and if we do learn of specific threat vectors for distribution of malicious copies, the Information Security Office will take appropriate action.

It is important to stay vigilant when browsing the web. Seeking additional information by viewing unknown websites or clicking unknown links is not recommended. 

If you have any questions, concerns, or information pertaining to the virus map, please reach out to the Information Security Office: infosec@asu.edu

Make sure to follow UTO on Twitter @ASU_UTO

Read more: COVID-19, Info Stealer & the Map of Threats – Threat Analysis Report