• Skip to main content
  • Skip to footer
  • About
    • Board of Directors
    • Advisory Board
    • Code of Ethics
    • Privacy Commitment
    • Fellowship Awards
    • Media
  • Get Involved
    • Membership
      • Advancing the Profession
      • Member Benefits
      • Why Join the PACC
      • Member Contact Update
    • Speak Out
    • Volunteer
    • Donate
      • Donor Bill of Rights
  • Certification
    • Apply for Certification
    • Recertification
    • Why Pursue Certification?
    • Certificate or Certification?
    • Accreditation
  • Resources
    • Strategic Privacy and Access Resource Center
      • Parents & Teachers
      • Standards
      • SPARC Contribution Guidelines
    • International Data Flows
    • Commissioners
    • Careers
    • Publications
    • Training & Education
  • Data Privacy Day
  • News & Views
    • Guest Post Guidelines
  • Contact
    • Speaking Invitations & Media Requests
    • Stay Informed & Avoid Spam
    • Partner
  • Login

The Privacy and Access Council of Canada

The voice for privacy and access

Information-stealing scams are enough to make you sick

12/Mar/2020

News about the number of people afflicted by COVID-19 has spawned an epidemic of campaigns using the outbreak as a lure to steal sensitive and personal information. 

Now that the World Health Organization has characterized COVID-19 as a global pandemic, scam artists are having a field day.

Wondering where the latest cases are? Don’t click on the links in this map, which is weaponized to deliver information-stealing malware.

Pierluigi Paganini explains what happens behind the scenes of this legitimate-looking map:  https://securityaffairs.co/wordpress/99446/cyber-crime/coronavirus-map-delivers-malware.html

More likely you’ll receive an email like this one from the US Centers for Disease Control with helpful information about COVID-19.

Be skeptical

Would the CDC really have your email address? 

Would they really be emailing people across the country with information or instructions?

If they did, would they personalize it by addressing the email to “Dear” and not bothering to add your name?

Not likely.

It’s more likely that they would to push the message out through traditional media, with details of where to look for more information.

What to do

Don’t accept information pushed out to you.

If you do receive an email that asks you to click a link to get information about how to protect yourself don’t click the link (or anything else in the email) — even if the link, logo, signature, and other elements of the email look legit. Even if the email is from a family member or friend.

Do seek out information from reliable sources — by typing in (or copy/paste) the web address. Again, don’t click the link.

• Centre for Disease Control and Prevention: COVID-19 Resources — https://www.cdc.gov/coronavirus/2019-ncov/index.html

• European Centre for Disease Prevention and Control — https://www.ecdc.europa.eu/en/novel-coronavirus-china

• Irish Republic — https://www.failteireland.ie/Utility/Covid-19.aspx

• Public Health Agency of Canada — https://www.canada.ca/en/public-health.html

• State & Territorial Health Departments in all 50 states, 8 US territories and freely associated states, and the District of Columbia — https://www.cdc.gov/publichealthgateway/healthdirectories/healthdepartments.htm

• UK Department of Health and Social Care— https://www.gov.uk/government/topical-events/coronavirus-covid-19-uk-government-response

• US Centers for Disease Control — https://www.cdc.gov/

• World Health Organization: COVID-19 Updates— https://www.who.int/emergencies/diseases/novel-coronavirus-2019

What else you can do

Take care of yourself and your family first. Everything else is less important. 

Filed Under: Breach, Data Protection, Privacy, Professional Development

Footer

PACC is the voice for privacy and access.

PACC is Independent  •  Non-profit  •  Non-partisan  •  Non-government

PACC is dedicated to the development and promotion of the access-to-information, information privacy, and data governance profession across the private, non-profit and public sectors.

PACC is the certifying body for access and privacy professionals, and engages in outreach efforts to advance awareness about access, privacy, and data protection.

Recent Posts

  • Guidelines 01/2021 on Examples regarding Data Breach Notification
  • Facial Recognition Cameras Here to Stay as Country’s Court System Entrenches Video Surveillance
  • IPC consultation on five-year strategic priorities under way
  • Info watchdog raps Privy Council Office for terminating access requests from public
  • A year to forget that’s worth remembering

© 2021 · Privacy and Access Council of Canada · Maintained by SLIcore Design.

We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume that you are happy with it.OkNoPrivacy policy