According to security experts, the number of sellers of counterfeit coronavirus confirmations increased by an alarming 500 percent from March to May alone. This clearly indicates the fact that holidaymakers are trying to avoid controls and restrictions.
–
Another problem is the attempt to abuse users seeking information, advice or mobile applications related to coronavirus passports. “Since the end of 2020, when vaccination was fully launched, we have seen a 25 percent increase in coronavirus passport-related domains. Of the 703 domains, 86 were flagged as fraudulent or suspicious. We strongly warn against imitations of the official website and also against any installation of unauthenticated applications from unofficial stores, “said Petr Kadrmas, Check Point’s security researcher.
–
According to him, it is necessary to pay particular attention to fraudulent QR codes, as they can serve as a gateway to the information stored in the device. “Hackers often replace legitimate QR codes with fraudulent variants that open a malicious URL after scanning or try to download malware. The malicious code can then steal login details for other applications on the phone or even make payments to hacker accounts, “stated Kadrmas.
–
“Governments need to unite, work together and act swiftly to combat false certificates and endorsements. Without a clear central system, it is much easier for hackers and fraudsters to slip through some loopholes, “said the security expert.
–
He also appealed to users who “must realize that a QR code is just a quick and convenient way to get to the relevant website.” “In most cases, it’s not even clear where the link actually leads. So there is no certainty that this is a legitimate source and the code is not part of an attack. While the EU and national governments say vaccination passes are safe and secure, hackers will always try to find ways to seize new opportunities. That is why we always recommend using a mobile security solution that protects devices and data from phishing, malicious applications and malware, “added Kadrmas.
—