Threat Management, Malware, Phishing

COVID-19 inspires Nigerian scammers to launch waves of BEC campaigns

Nigerian cybercriminal actors are shamelessly exploiting the COVID-19 pandemic to infect government health care agencies, academic medical programs, medical publishing firms and more with malware, largely for the purpose of conducting Business Email Compromise operations.

In a company blog post, researchers with Palo Alto Networks' Unit 42 threat intelligence team have reported observing three prominent actors launch a total of 10 coronavirus-themed BEC phishing campaigns between January 30 to April 30. Local utilities and utilities have also been among the targets of these scammers, whom collected Unit 42 refers to as SilverTerrier.

Unit 42 has tied eight campaigns directly or indirectly one single Nigerian actor who has used a variety of phishing email content disguised as official COVID-19 updates and information to distribute the remote access trojans/spyware Agent Tesla and NanoCore, and the LokiBot information stealer.

The researchers also identified two distinctly separate campaigns -- one associated with the name Alhaji that also favored LokiBot for stealing information, and another going by name Black Emeka that used PowerShell to download malicious executable files onto victims' machines.

Typically in BEC scams, the attackers impersonate or spoof legitimate individuals, organizations, employers or business partners in order to trick employees at an organization into revealing sensitive data or transferring funds into a malicious bank account.

Bradley Barth

As director of multimedia content strategy at CyberRisk Alliance, Bradley Barth develops content for online conferences, webcasts, podcasts video/multimedia projects — often serving as moderator or host. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.