AP Photo/Mark Schiefelbein
- Since January, there has been an exponential rise in the number of websites with domain names mentioning "coronavirus," "COVID," and "COVID-19," according to a new report.
- Over 48,000 such domains have been registered this year. While some are legitimate sites, researchers have identified many that are malicious, and others that are empty sites "parked" on domains that could potentially be sold later.
- The trend provides one way to quantify the lengths that scammers and shady companies are going to in order to profit from the coronavirus epidemic.
- Visit Business Insider's homepage for more stories.
By the end of 2019, there was just one certified website on the web that conatined "COVID" in its URL, belonging to an Arizona-based electronics manufacturer by that name.
By the end of March, more than 42,000 websites with domains containing "COVID" and "corona" had been created, according to a new report from cybsecurity research firm Sophos Labs. Researchers say the bulk of the domains are either actively malicious or suspicious.
Transform talent with learning that worksCapability development is critical for businesses who want to push the envelope of innovation.Discover how business leaders are strategizing around building talent capabilities and empowering employee transformation.Know More Like a surge in coronavirus-related phishing scams, the steep rise in newly-registered domains reflects shady actors' willingness to cash in on people's fears and the desire for information about the epidemic. Researchers have been combing through the newly-registered domains to identify active scams, and have already gotten hosts like WordPress to remove fraudulent sites.
"Over the past 10 days, we've found 25 COVID-19 related URLs that were actively being used for phishing, malware staging or as a phone-home server for malware," Sophos senior researcher Sean Gallagher told Business Insider. "While a fraction of the total, it's still a significant number. When they are used for phishing attacks, they usually go dormant quickly after they're detected."
SophosSome of the malicious sites are longstanding pharmaceutical scam sites that have been "re-wrapped" to catch the attention of people searching for coronavirus treatments. Others link to malware that holds victims' computer systems for ransom until they pay a price.
The majority of the new domains are empty sites that have been "parked" at coronavirus-related URLs, which could be sold to the highest bidder. Some are extraneous, while others are oddly specific - one URL logged by Sophos is "coronavirusshaquilleoneal[.]com."
Read the full report from Sophos Labs here.
Do you have a personal experience with the coronavirus you'd like to share? Or a tip on how your town or community is handling the pandemic? Please email covidtips@businessinsider.com and tell us your story.
And get the latest coronavirus analysis and research from Business Insider Intelligence on how COVID-19 is impacting businesses.
Next Story
Indian markets conduct disaster recovery test amid improved sentiment and positive FIIs
Spiti Valley guide 2024: Stunning locations & interesting things to do
Zydus Q4 net profit surges 4-fold to ₹1,182 cr; revenue at ₹5,534 cr
Sebi mulls facilitating MFs to invest in overseas funds with exposure to Indian securities
India's forex reserves jump $2.56 bn to $644.15 bn
