Fraud in the UK
In the UK since 1 February 2020, there have been over 100 cases reported to Action Fraud relating to coronavirus fraud, with total losses reaching nearly £1 million. Most reports relate to shopping scams, but other reported frauds include ticket fraud, charity fraud, counterfeiting and lender fraud. One victim reported losing over £15,000 when they tried to purchase face masks that were never delivered.
There have been hundreds of reports of coronavirus-themed phishing emails. These emails attempt to trick people into opening malicious attachments which can lead to fraudsters stealing people’s personal information, email logins, and banking details.
Fraud around the world
The trend in fraud-related activity is not just limited to the UK, it has been replicated in other parts of the world too:
- The US Justice Department announced on 22 March that it was taking action to close down a website falsely claiming to have access to ‘vaccine kits’ supposedly manufactured by the World Health Organization (WHO) to prevent coronavirus;
- In Italy, a similar online fraud used emails that looked like they were from the WHO to infect computers with a banking trojan called Trickbot;
- The Hong Kong Police had to issue a scam alert informing the public that the cybercriminals had impersonated Department of Health workers and told their victims that there ‘were some anomalies’ regarding their health, before asking for their bank details in order to steal their money;
- Fraudsters in South Africa have been claiming to represent the central bank and visiting consumers’ homes (with false central bank identification) telling them to hand over any banknotes in their possession because they have been contaminated with the coronavirus amid reports that it was withdrawing any banknotes and coins from circulation due to the coronavirus.
To help members of the public protect themselves from becoming a victim of fraud, Cifas (the UK’s Fraud Prevention Service) advises the following:
- Be sceptical - if you receive an email, text or WhatsApp message about coronavirus, never click on any attachments or links unless you are sure of the identity of the sender. Be particularly wary of unsolicited communication;
- Do not give money or personal information to websites or people you do not trust 100%. If you are approached, try to verify details and call the sender back via a number obtained from a different source;
- Avoid emails or advertisements that urge you to ‘act now’. This sense of urgency is meant to pressure people into making irrational decisions;
- Don’t allow yourself to be pressured into donating money, and never make donations by cash or gift card, or send money through transfer agents;
- If you wish to donate money to charity organisations, do this by searching for their official websites or phone numbers, and not through advertisements or when approached.
We expect that fraudsters will be planning to benefit from the package of measures that the government has introduced to support those affected by the coronavirus outbreak – but not in the way that the Chancellor intended.
Individuals and businesses owners, who find themselves in desperate need for help at this very difficult time, are likely to be particularly susceptible to scams. We have seen, even prior to the announcement of the new measures, evidence of tax refund and rebate scams using what seem to be authentic HMRC logos. In some cases, the fraudsters tried to spoof a genuine email address or change the ‘display name’ to make it appear genuine.
Remember, HMRC will never send notifications by email about tax rebates or refunds.
Check emails carefully and, if you are suspicious, do not:
- visit the website;
- open any attachments; or
- disclose any personal or payment information.
Temporary office closures
If you have closed your office temporarily during the outbreak, there are some extra steps that you can take to protect yourself:
- Test your alarm system before you leave the premises, ensure it is monitored and fully operational;
- Identify any vulnerable areas and rectify them. Ensure security gates, bollards and fire exit doors have been secured prior to closure of the premises;
- Ensure service doors are closed and locked when not in use;
- Make sure you have list of key holders who can be contacted in times of emergency. Ensure your contact details for staff are up to date;
- Consider moving high value items into secured stockrooms and out of view;
- Ensure keys to the premises or other venues are not left inside and are instead with dedicated key holders;
- Consider timer switches or ensure sufficient lighting is left on at the premises/surrounding area;
- Ensure there are no combustible materials left in the proximity of the building, such as packaging, to reduce the risk of arson;
- Review your CCTV to confirm it is operational, provides good quality images and is positioned to cover as much of the business premises as possible. You may wish to consider a mobile phone app that allows connectivity and a vocal capacity to engage with any intruder; and
- Ensure that no cash is retained on the premises overnight (leave a note on the door stating that no cash or valuables are kept overnight) or store valuables in a security-accredited safe bolted to the floor.
Many businesses are now encouraging or instructing their staff to work from home to help stop the spread of coronavirus. However, switching to remote working can create cybersecurity problems for both employers and employees. As more of us are now working from home, the police have already reported seeing an increase in cyber-attacks.
- Consider changing default passwords on your home Wi-Fi router to a more complicated password to prevent hackers accessing your network;
- Use strong and unique passwords on every account and device - consider using two-factor authentication (2FA), which requires you to provide a second piece of evidence (such as entering a code that has been sent to you by text message) to prove it is definitely you logging in. A good example of two-factor authentication is the withdrawing of money from an ATM; only the correct combination of a bank card (something the user possesses) and a PIN (something the user knows) allows the transaction to be carried out;
- Software updates contain vital security patches - keep all devices, apps and operating systems up to date and make sure you are protected with appropriate anti-virus software;
- If you are working in a more public place, use a privacy screen and tether from your phone instead of an untrusted Wi-Fi hotspot;
- Only use software your company would typically use to share files. Refrain from using your personal email or third party services unless reliably informed otherwise;
- Working from home can present additional risks as some of the checks and balances ordinarily applied in the workplace cannot be undertaken. Think of how additional remote checks can be undertaken, do not be tempted to reduce responsibilities, and ensure proper controls and monitoring procedures are maintained.
Parents need to be alert to the risks to children from additional online activity. It is important that parents and carers remain vigilant and alert on behalf of their children.
You can also access the latest National Cyber Security Centre (NCSC) advice for UK companies here.
Stephen Goderski (firstname.lastname@example.org +44 (0)207 516 2224)
Peter Hart (email@example.com +44 (0)207 516 2221)
James Sleight (firstname.lastname@example.org +44 (0)113 426 7404)
Oliver Collinge (email@example.com +44 (0)113 426 7405)