Covid-19 phishing scams targeted by HMRC takedown operation
HMRC has taken down nearly 300 Covid-19 phishing scam sites in the last few weeks according to new data. The Inland Revenue has been asking Internet Service Providers (ISPs) to remove nearly 300 web addresses since the national lockdown commenced on March 23.
According to figures collated by legal firm Griffin Law under the Freedom of Information Act, of the 292 sites that have been removed some 237 were identified by HMRC.
Meanwhile, the remaining 55 have been highlighted by members of the public using the dedicated reporting inbox, which can be contacted via [email protected].. The phishing scams are a combination of emails and text messages, with the majority coming from mobile phone sources.
Since March, HMRC has also reported that it has discovered 62 active phishing scams to date, all of which have related to the Covid-19 pandemic and arrive via SMS.
Additional threats
A widely-reported phishing email scam has already been used to target business owners applying for the government’s Coronavirus Job Retention Scheme. The message has been sent to business owners using official HMRC branding and purports to be from ‘Jim Harra, First Permanent Secretary and Chief Executive of HMRC’.
The email asks for the bank account details of the recipient and includes the following message with typos. “Dear customer, We wrote to you last week to help you prepare to make a claim through the Coronavirus Job Retention Scheme. We are now writing to tell you how to access the Covid-19 relief. You will need to tell your us which UK bank account you want the grant to be paid into, in order to ensure funds are paid as quickly as possible to you.”
Cyber security expert Chris Ross, SVP, Barracuda Networks said of the scam: “We’re seeing a sharp rise in phishing emails relating to the Covid-19 outbreak and this example underlines how hackers will prey upon vulnerable business owners who are trying to protect jobs.
As always with these scams, the victim is encouraged to disclose personal data and financial information under the false assumption that the email is legitimate. It is absolutely vital that businesses have the cyber security systems in place to identify and quarantine phishing emails and ensure that every employee is properly trained to spot suspicious communication and think twice before giving out personal information.”
HMRC has taken down nearly 300 Covid-19 phishing scam sites in the last few weeks according to new data. The Inland Revenue has been asking Internet Service Providers (ISPs) to remove nearly 300 web addresses since the national lockdown commenced on March 23. According to figures collated by legal firm…
Recent Posts
- Microsoft’s Surface and Xbox hardware revenues take a big hit in Q3
- Qualcomm claims its Snapdragon X Plus is an M3 beater, but is it really?
- TCL’s entry-level Q6 QLED TV has fallen to a new low price for a limited time
- Apple is forging a path towards more ethical generative AI – something sorely needed in today’s AI-powered world
- Tupac’s estate threatens to sue Drake for his AI-infused Kendrick Lamar diss
Archives
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- March 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- January 2022
- December 2021
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- December 2019
- November 2019
- December 2011