How to stay safe online as scammers target vaccine information seekers


Online scammers are quick to exploit any opportunity where people are confused or vulnerable – such as when there is a pandemic. Knowing that the web is often the first port of call for people seeking information, they register domains and populate them with information that people will be drawn to. But those curious online surfers are exposing themselves to a lot more than they bargained for.

All it takes is for an unwary person to key in details such as their email address and password, and the scammer could then have the keys to one or more of that person’s private or work accounts – which they can then sell on, or exploit for their own profit.

Check Point Research (CPR) confirms that the number of domains featuring the word “vaccine” in their title has significantly increased over the past four months, as the global vaccine rollout was being prepared and launched. Since the beginning of November 2020, until now, CPR documented 7,056 new vaccine-related domains, of which 294 were deemed potentially dangerous.

Compared to the previous period, between July and October, CPR documented only 1,773 new domains, where 228 were deemed potentially dangerous. In effect, domain registrations increased by 300% throughout the two time periods, while websites deemed dangerous by CPR increased by 29%.

CPR has provided the following tips for staying safe online:

  • Watch for misspellings – Beware of misspellings or sites using a different top-level domain. For example, a .co instead of .com. Misspelling in domains are a strong giveaway that deception is at play.
  • Beware of “buy vaccines online” offers – As tempting as it may be while many of us wait to receive our vaccinations, these offers are virtually guaranteed to be a scam.
  • Never share your credentials – Credential theft is a common goal of cyberattacks. Many people reuse the same usernames and passwords across many different accounts, so stealing the credentials for a single account is likely to give an attacker access to a number of the user’s online accounts. Never share your account credentials and don’t re-use passwords.
  • Always be suspicious of password reset emails – If you receive an unsolicited password reset email, always visit the website directly (don’t click on embedded links) and change your password to something different on that site (and any other sites with the same password). By clicking on a link, you can reset the password to that account to something new. Not knowing your password is, of course, also the problem that cybercriminals face when trying to gain access to your online accounts. By sending a fake password reset email that directs you to a lookalike phishing site, they can convince you to type in your account credentials and send those to them.
  • Always note the language in the email – Social engineering techniques are designed to take advantage of human nature. This includes the fact that people are more likely to make mistakes when they’re in a hurry and are inclined to follow the orders of people in positions of authority. Phishing attacks commonly use these techniques to convince their targets to ignore their potential suspicions about an email and click on a link or open an attachment.





Related news & editorials

  1. 26.10.2021
    by      In
    Work, health and safety are fundamental to our lives and are, more than ever, a central focus for organisations.
    The Hunter region in NSW is well-known for leading the way in industry, this in turn has led to the region becoming champions of WHS.
    The Hunter Safety Award were born out of desire to... Read More
  2. 19.10.2021
    by      In
    There is no doubt that the recent AUKUS agreement between Australia, USA and the UK was a surprise to just about everyone on the planet!
    Taking a closer look into the government’s decision to commit to the AUKUS alliance, much of what has been reported by mainstream media has been inaccurate or... Read More
  3. 18.10.2021
    by      In
    Australian Resources and Energy Group AMMA welcomes today’s intervention of the Australian Government seeking to put an end to three months of damaging strikes at Fremantle Port.
    It has been reported the Australian Government has stepped in, utilising its powers under the Fair Work Act to seek an... Read More
  4. 18.10.2021
    by      In
    McCormick & Company Inc, a global leader in flavour, today announced plans to open a new, state-of-the-art, environmentally friendly, multi-purpose head office in Mentone.
    This new facility is currently under construction and is on schedule to provide a much-needed boost to manufacturing in... Read More