Spoofing the Small Business Administration Getting Popular


Since its inception, COVID-19 has given birth to a multitude of opportunities for threat actors seeking to make quick money, steal credentials, and distribute malware. One of the popular attack vectors that revolve around attackers targets the Small Business Administration COVID-19 relief loan.

Attackers leveraged fake SBA relief loans to tempt the public and distribute malware, such as Zeus, SILENTNIGHT banking malware, GuLoader, Sphinx, and Remcos RAT.

This malware was then dispatched in the form of attachments through emails disguised as either the authorized government mails or on behalf of the organizations that distributed the COVID-19 relief funds.

Source: cyware