Criminals will use any opportunity they can to take money from innocent people. This includes exploiting tragedies and global emergencies, such as the COVID-19 pandemic, to scam people in a variety of ways. The number of these scams are only likely to increase and we need individuals and businesses to be fully aware and prepared.
We have already received nearly 400 reports of fraud related to COVID-19, the majority of which are online shopping scams where people have ordered protective face masks, hand sanitiser, and other products, which have never arrived. We have also seen a large amount of phishing emails and texts circulating, that use COVID-19 as a hook, and try to get recipients to click on links or attachments which harvest information and lead to the individual revealing personal or financial details.
While the number of reports of fraud in general is not increasing, we are warning people that the current social situation we find ourselves in could lead to any number of fraud types increasing as this immediate public health crisis unfolds. We are advising people to be particularly vigilant around:
- Computer Software Service Fraud – as more people work from home, fraudsters may capitalise on slow networks and IT problems, to commit computer software service fraud. Be wary of cold calls or unsolicited emails offering you help with your device or to fix a problem. Attached is a helpful graphic with protection advice.
- Mandate Fraud – with more people working at home, it may be easier for fraudsters to impersonate senior decision makers, with seemingly valid reasons why they cannot be contacted, and request a change in a direct debit, standing order or bank transfer mandate, by purporting to be an organisation you make regular payments to. The change they ask you to make will divert funds to their own bank account. Attached is a helpful graphic with protection advice.
Many organisations are either moving to working remotely for the first time or significantly increasing it, and this presents a number of cyber security challenges. Advice on how to respond to those challenges is set out in the NCSC’s working from home guidance.
- Supporting people to use stronger passwords and setting up two factor authentication.
- Ensuring staff know how to report problems, especially those related to security.
- Creating ‘How do I’ guides for new software and tools staff may be using.
- Using VPNs to allow users to securely access the organisation’s IT services.
- Ensuring devices encrypt data whilst at rest.
Our Cyber Griffin team have also created a series of short video guides on how to keep you and your family safe while online at home which contain practical hints and tips and cover a range of topics, including passwords, phishing, vishing and multi-factor authentication.