THALES
Overview: The aggravation of the COVID-19 crisis in Europe, which has become the new epicenter of the epidemic, implies an increase in the number of threat actors using decoys linked to this news to compromise their victims.
A change in this dynamic must in particular be taken into account by critical institutions and organizations. While the actors taking advantage of the news to carry out their attacks were initially cybercriminals, more and more state-sponsored groups (Advanced Persistent Threat) are now using this theme as part of their espionage campaigns.
Another phenomenon to watch out for is the growing number of Android mobile applications being used to largely compromise the populations.
Globally it appears today, according to several sources, that 50% of the domain names created since December and linked to the theme of COVID-19 or Coronavirus can lead to the injection of malicious software.