Security researchers at Kaspersky have identified a phishing campaign that poses as an email from the CDC (Centers of Disease Control). The email’s subject line is certainly likely to catch the eye of many people, as it claims to be emergency information related to “Coronavirus outbreak in your city”:
The email will likely make users believe they are reading an email sent by cdc.gov, the genuine internet domain of the Centers of Disease Control. However the email is using a lookalike address of cdc-gov.org.
The link shown in the email pretends to go to cdc.gov, but instead takes the user to a fake Microsoft Outlook login page which then attempts to steal users’ email login credentials.
Kaspersky also warn that they have seen a separate scam, using the slightly different domain cdcgov.org