Phishing e-mails exploit the coronavirus crisis

The Sophos Security Team has spotted a phishing scam impersonating the World Health Organization (WHO) that uses the coronavirus as its lure. The e-mail carries the logo of the WHO and contains instructions commonly used by scammers: ‘click … to download safety measures’. The link takes the potential victim to the scam page consisting of the official home page of the WHO and a pop-up form on top of it. Those who fill in the form are redirected to WHO’s legitimate page, while their e-mail and login data end up in the phishers’ database.