The new attacks are leveraging interest around the virus and possible cures to gather victims’ email account logins and install trojans that can log keystrokes and record web cam footage, according to a Symantec blog post.
One of the campaigns spoofs CNN news regarding terrorists’ use of the virus to target citizens. Users are encouraged to click a link to learn how to take precautions. Once redirected, victims are asked for their email login and then sent to CNN’s real homepage. The email information is sent directly to the phishers.
Attackers used a similar tactic earlier this year by capitalizing on the news of the lost Malaysian Airlines plane to spread malware on Facebook.