Adversaries are using the COVID-19 crisis to propagate various strains of dangerous malware, launch new phishing campaigns, and commit larger scale fraud by exploiting the emotions associated with this global pandemic. We are also aware of attacks targeting public health agencies using known malware variants, previously seen in campaigns from 2019.
Arctic Wolf continues to review and reinforce existing threat detection mechanisms we have in place that provide coverage for criminal Tactics, Techniques, and Procedures (TTPs). Arctic Wolf’s Threat Operations team is reviewing our detection logic, with a focus on TTPs and indicators related to COVID-19 emerging threats. The team is also working on enhancing detection and visibility around remote access tools, credential harvesting, and remote endpoint threats as companies continue to expand the attack surface with more remote workers.
By combining the technical capabilities of our detection framework with the unique insights of your Concierge Security Team, we continue to offer strong protection in this rapidly changing threat landscape.