Solo and Small-Firm Section

 View Only

While being vigilant about novel Coronavirus, stay alert on malware and phishing scams

By NJSBA Staff posted 03-19-2020 12:42 PM

  

Social distancing means you are more reliant than ever on your technology and the Internet for the work of your firm and clients, and that also means remaining vigilant on the cybersecurity and online scam front. The New Jersey Cybersecurity and Communications Integration Cell (NJCCIC) reports that they are seeing more phishing and other scams this week that attempt to exploit the global concern over COVID-19. 

“Email and social media-based phishing scams referencing the virus attempt to convince recipients to open links or attachments to direct users to malicious websites or deliver malware, reveal sensitive information, or donate to fraudulent causes,” according to the NJCCIC, an organization within the state’s Office of Homeland Security and Preparedness.

Researchers have found that over 4,000 coronavirus-related domains have been registered since January. For example, one malicious website is claiming to be a live map for COVID-19 cases run by Johns Hopkins University. Coronavirus-themed scam emails have even tried to reach State of New Jersey employees. 

The NJCCIC recommends:

  • Exercise caution with coronavirus-themed emails, posts, and links, ensuring to only use trusted sources – such as official government websites – for information on COVID-19. More information is provided in the CISA publication, “Defending Against COVID-19 Cyber Scams” and CISA Insights document “Risk Management for Novel Coronavirus (COVID-19).”
  • Avoid clicking on links, enabling macros, or opening attachments within unexpected or unsolicited emails and exercise caution with emails from known contacts.

Working from home?
With so many of New Jersey's attorneys shifting to a work-from-home setting, some for the first time, don't underestimate the importance of remote access security.  The NJCCIC has released guidance, including tips on utilizing VPNs, personal versus organization-owned devices, conference call security and more. See all their tips here.

Permalink