Scam Pandemic: How Attackers Exploit Public Fear through Phishing

2020 APWG Symposium on Electronic Crime Research (eCrime) Pub Date : 2020-11-16 DOI:10.1109/eCrime51433.2020.9493260

Marzieh Bitaab, Haehyun Cho, Adam Oest, Penghui Zhang, Zhibo Sun, Rana Pourmohamad, Doowon Kim, Tiffany Bao, Ruoyu Wang, Yan Shoshitaishvili, Adam Doupé, Gail-Joon Ahn

{"title":"Scam Pandemic: How Attackers Exploit Public Fear through Phishing","authors":"Marzieh Bitaab, Haehyun Cho, Adam Oest, Penghui Zhang, Zhibo Sun, Rana Pourmohamad, Doowon Kim, Tiffany Bao, Ruoyu Wang, Yan Shoshitaishvili, Adam Doupé, Gail-Joon Ahn","doi":"10.1109/eCrime51433.2020.9493260","DOIUrl":null,"url":null,"abstract":"As the COVID-19 pandemic started triggering widespread lockdowns across the globe, cybercriminals did not hesitate to take advantage of users’ increased usage of the Internet and their reliance on it. In this paper, we carry out a comprehensive measurement study of online social engineering attacks in the early months of the pandemic. By collecting, synthesizing, and analyzing DNS records, TLS certificates, phishing URLs, phishing website source code, phishing emails, web traffic to phishing websites, news articles, and government announcements, we track trends of phishing activity between January and May 2020 and seek to understand the key implications of the underlying trends.We find that phishing attack traffic in March and April 2020 skyrocketed up to 220% of its pre-COVID-19 rate, far exceeding typical seasonal spikes. Attackers exploited victims’ uncertainty and fear related to the pandemic through a variety of highly targeted scams, including emerging scam types against which current defenses are not sufficient as well as traditional phishing which outpaced the ecosystem’s collective response.","PeriodicalId":103272,"journal":{"name":"2020 APWG Symposium on Electronic Crime Research (eCrime)","volume":"151 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-11-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"22","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 APWG Symposium on Electronic Crime Research (eCrime)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/eCrime51433.2020.9493260","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 22

Abstract

As the COVID-19 pandemic started triggering widespread lockdowns across the globe, cybercriminals did not hesitate to take advantage of users’ increased usage of the Internet and their reliance on it. In this paper, we carry out a comprehensive measurement study of online social engineering attacks in the early months of the pandemic. By collecting, synthesizing, and analyzing DNS records, TLS certificates, phishing URLs, phishing website source code, phishing emails, web traffic to phishing websites, news articles, and government announcements, we track trends of phishing activity between January and May 2020 and seek to understand the key implications of the underlying trends.We find that phishing attack traffic in March and April 2020 skyrocketed up to 220% of its pre-COVID-19 rate, far exceeding typical seasonal spikes. Attackers exploited victims’ uncertainty and fear related to the pandemic through a variety of highly targeted scams, including emerging scam types against which current defenses are not sufficient as well as traditional phishing which outpaced the ecosystem’s collective response.

查看原文本刊更多论文

诈骗流行:攻击者如何利用公众的恐惧通过网络钓鱼

随着新冠肺炎疫情开始在全球范围内引发大范围封锁，网络犯罪分子毫不犹豫地利用了用户越来越多地使用互联网和依赖互联网的机会。在本文中，我们在大流行的最初几个月对在线社会工程攻击进行了全面的测量研究。通过收集、综合和分析DNS记录、TLS证书、网络钓鱼网址、网络钓鱼网站源代码、网络钓鱼电子邮件、网络钓鱼网站流量、新闻文章和政府公告，我们追踪了2020年1月至5月网络钓鱼活动的趋势，并试图了解潜在趋势的关键含义。我们发现，2020年3月和4月的网络钓鱼攻击流量飙升至2019冠状病毒病前的220%，远远超过典型的季节性峰值。攻击者利用受害者对大流行的不确定性和恐惧，通过各种高度针对性的骗局，包括当前防御能力不足的新兴骗局类型，以及传统的网络钓鱼，这些骗局超过了生态系统的集体反应。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2020 APWG Symposium on Electronic Crime Research (eCrime)

自引率

0.00%

发文量