FBI Alert TLP White: COVID-19 Email Phishing Against US Healthcare Providers

Following a global increase in malicious cyber activity exploiting fear derived from the COVID-19 pandemic, the FBI was notified of targeted email phishing attempts against US-based medical providers. These attempts leveraged email subject lines and content related to COVID-19 to distribute malicious attachments, which exploited Microsoft Word Document files, 7-zip compressed files, Microsoft Visual Basic Script, Java, and Microsoft Executables. The FBI is providing indicators of compromise related to these phishing attempts to assist network defenders in protecting their environments. Additionally, the FBI is providing the attached list of hashes related to additional COVID-19 phishing.

Related Resources

Letter/Comment
Public
AHA provides information on actions taken by hospitals and health systems in response to the COVID-19 pandemic in conjunction with the House Education and…
Podcasts
The COVID-19 pandemic has brought about new challenges for health care providers including the way teams work together and communicate. The American Society of…
Testimony
Public
Statement of the American Hospital Association for the Committee on Ways and Means of the U.S. House of Representatives “The Disproportionate Impact of COVID-…
Letter/Comment
May 26, 2020 The Honorable Chip Roy U.S. House of Representatives 1319 Longworth House Office Building Washington, DC 20515 Dear Representative Roy: On…
Other Resources
A new kind of huddle at Lenox Hill Hospital in New York City focuses on the importance of sustaining hope for front-line workers during…
Other Resources
The Fort Myers Police Department (FMPD) in Florida wanted to thank health care workers on the front lines of the pandemic in a big way. To…