Print this article

Equifax Teams With HooYu To Smooth Customer Onboarding

Jackie Bennion

27 May 2020

No stranger to cyberattacks, global credit bureau released results of a nationwide survey on Monday showing that consumers generally lack trust in the UK's proposed tracing app, particularly over how the government will handle the data, exposing them to possible fraud. Almost half thought that such an app would give cyber criminals free rein to send smishing/phishing messages through texts and emails; and just over half felt that they weren't savvy enough to spot these.

“At this stage, nobody knows where to get the NHSX app from, so it can be reasonably expected that consumers will be faced with floods of emails with bogus links to convincing looking domains," to download the app, Jamie Stone, head of EMEA at Anomali, said.

Stone said the link will be a web page asking people for more personal information than the actual app requests and this information could be used in future attacks. He also warned about more people being targeted by mobile phone, known as "smishing", because it is done via SMS. “Due to the smaller screen, people will be less able to check the veracity of the link so will be more trusting and might click it,” he said.

Anomali has noted thousands of additional COVID-19 related domains being registered over the past few months. “It’s tough to predict the increase in the volume of attacks," Stone said, but the global interest around the virus and numerous national track-and-trace apps put into service "means that attackers will likely use many of these domains to host phishing attacks via email and SMS."

"People using COVID-19 tracking apps need to be extremely vigilant and aware, ensuring that they’ve installed official government apps and that they are interacting with authentic messages from the agencies,” he said.