COVID-19 Research Organizations Attacked by Chinese Hackers Group
FBI warned that Chinese hackers are attacking organizations who plays a vital role in research on COVID-19.
FBI and CISA have warned the organizations and multiple sectors includes state/local/tribal/territorial/private sectors and pharmaceutical and Health care departments.
Due to COVID-19 Pandemic, cyber-attacks are kept increasing and the attackers targeting various sectors via malspam, phishing related attacks.
The currently ongoing attacks is investigating as a join operation lead by Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA)
“The attackers attempt to identify and illicitly obtain valuable intellectual property (IP) and public health data related to vaccines, treatments, and testing from networks and personnel affiliated with COVID-19-related research,” FBI, CISA said.
The #FBI and @CISAgov have observed PRC-affiliated actors attempting to obtain public health research related to #COVID19 treatments. The potential theft of this information jeopardizes the delivery of secure, effective, and efficient treatment options. https://t.co/rDphcshGHk— FBI (@FBI) May 13, 2020
The Research teams have taken the responsibilities by investigating and working on them by maintaining Security and prevent them from threat, such as :
FBI has taken the accountability of defending the U.S. against foreign intelligence, spying, and other cyber operations duties.
CISA is contributing services and information to support the cybersecurity of federal and other sector entities that helps in COVID-19 research and response and they have also taken the accountability to save the nation’s crucial architecture from real cyber threats.
“The FBI and CISA urge all organizations conducting research in these areas to maintain dedicated cybersecurity and insider threat practices to prevent surreptitious review or theft of COVID-19-related material,” the PSA reads.
Preventive Measures :
- Scan web applications for unwanted access, unusual task and mitigation.
- Always use multi-factor authentication.
- Recognize the malicious activity performed by end-users.
- Always be take care of missing and poor encryption.
- Upgrade end-to-end encryption.
- Update Patches of all workstations and servers on time.