Please fill in the form below to subscribe to our blog

Categories

Tags

Australia BullPhishID BullPhish ID Canada commercial credential stuffing cyberattack cybercrime cybersecurity Dark Web dark web credential loss Dark Web ID dark web monitoring dark web threat Data Breach Data Breach Alerts data compromised data loss prevention data theft France hacking healthcare insider threats Japan MSPs MSP Solutions MSP Space nation-state hackers Passly passwords phishing phishing resistance phishing resistance training ransomware remote working retail security security awareness training SMB cybersecurity stolen credentials supply chain risk The Week in Breach third party risk United Kingdom United States

How Not To Get Caught by the New SBA COVID-19 Relief Phishing Scam

August 13, 2020
phishing resistance training for kids

Why Phishing Resistance Training Matters: Defending Against the New SBA COVID-19 Relief Phishing Scam 

With an increase of more than 600% since the start of the global pandemic, phishing is the most common (and dangerous) threat of 2020. But not all phishing and spear phishing scams are built the same. Clever cybercriminals know they need to go the extra mile to try to pull off major scams with major paydays – and major consequences. Enter the new SBA COVID-19 relief phishing scam. 

In a Cybersecurity & Infrastructure Security Agency (CISA) warning that released on 8/12/20, the agency noted that it is “currently tracking an unknown malicious cyber actor who is spoofing the Small Business Administration (SBA) COVID-19 loan relief webpage via phishing emails. These emails include a malicious link to the spoofed SBA website that the cyber actor is using for malicious re-directs and credential stealing.” 

A clever and dangerous new scam preys on businesses

So far, investigators have determined that the bad actors have kicked off their cybercrime spree by sending a phishing email to Federal Civilian Executive Branch and state, local, tribal, and territorial government recipients.

Here’s the structure of the scam:

  • A highly convincing phishing email hooks the user
  • The subject line, SBA Application – Review and Proceed, looks legitimate
  • The sender is marked as disastercustomerservice@sba[.]gov 
  • Text inside urges the recipient to click on a hyperlink to address: 
    hxxps://leanproconsulting[.]com.br/gov/covid19relief/sba.gov 
  • The domain resolves to IP address: 162.214.104[.]246 
  • And that website appears to be intended for malicious re-directs and credential stealing 

The warning goes on to detail potential mitigations against this scam, including using warning banners for all emails external to an organization, ensuring that all systems have the latest security updates, and maintaining up-to-date antivirus signatures and engines. 

New SBA COVID-19 Relief Phishing Scam represented by a red bullhorn

Updated security training including phishing resistance and stronger password security is also on the recommendation list – and ID Agent has got you covered. 

BullPhish ID Boosts Phishing Resistance Fast

BullPhish ID is a smart training solution that increases phishing resistance companywide with memorable and effective training on how to detect and avoid phishing, transforming your staff from your biggest cybersecurity threat into your biggest cybersecurity asset.

  • It’s simple to set up, fast to deploy, and easy to run. 
  • Training raises your staff’s overall cybersecurity awareness, making them more alert to other potential phishing threats, like SMS text and chat phishing attempts
  • Over 80 plug-and-play phishing resistance training kits are available, with 4 new kits added each month including COVID-19 threats. 
  • Engaging animated video delivers effective training in bite-sized pieces for improved retention in 8 languages.  
  • Online testing quickly determines who needs more training and enabling you to adjust training groups accordingly. 
phished password

See BullPhish ID at work in a 10-minute demo video

Passly Protects You From Phished Passwords

Passly provides strong password protection to keep cybercriminals at bay. Our state of the art secure identity and access management solution is an essential tool that provides vital password security, preventing cybercriminals from accessing your systems and data by making sure that the right people have access to the right things anytime, anywhere – and only the right people.

  • Multifactor authentication takes the sting out of a stolen password by requiring a second form of identification for access. 
  • Identifier codes and tokens can be delivered by text, app, and more. 
  • Seamless integration with 1,000+ apps means a smooth transition. 
  • Single sign-on creates individual user Launchpads, allowing for easy access control. 
  • Simple remote management with protection that deploys in days, not weeks.  
  • Secure Shared Password Vaults enable techs to manage and store passwords for business, personal, or shared accounts in one central location. 
  • Ideal for supporting a remote workforce.
phished password

Watch a 10-minute demonstration of Passly now.

Smarter Security Now Means Safer Data Later

By taking smart precautions, improving the company’s phishing resistance training (including executives), committing to securing identity and access management, and boosting overall cybersecurity awareness, you can avoid getting caught up in today’s constantly growing wave of phishing scams and stay on top of tomorrow’s cybersecurity threats

let us help secure you against passwords reuse with contact information and the ID Agent logo on grey.

Our Partners typically realize ROI in 30 days or less. Contact us today to learn why 3,850 MSPs in 30+ countries choose to Partner with ID Agent!

LEARN MORE>>

Check out an on-demand video demo of BullPhish ID or Dark Web ID WATCH NOW>>

See Graphus in action in an on-demand video demo WATCH NOW>>

Book your demo of Dark Web ID, BullPhish ID, RocketCyber or Graphus now!

SCHEDULE IT NOW>>