Hackers aren’t just looking to steal information on the vaccines for COVID-19. They’re also going after its distributors and suppliers, security researchers warned in a report released Thursday.
Researchers from IBM’s X-Force team detailed a global hacking campaign targeting government agencies, tech companies and energy suppliers in countries like Germany, Italy, South Korea and Taiwan. The companies and agencies are all connected to the Cold Chain Equipment Optimization Platform, a partnership between UNICEF, the vaccine alliance Gavi and other organizations to help with vaccine distribution.
Haier Biomedical is working with CCEOP, the World Health Organization and the United Nations to help with the COVID-19 vaccine’s rollout, and the hackers sent emails to targets asking for price quotes, IBM’s researchers said.
The emails contained a malicious attachment that would ask people to enter their passwords to view the files, which the hackers would steal. It’s unclear if any of the attacks were successful, but the purpose was likely to gather information for future attempts, IBM’s researchers said.
“Moving laterally through networks and remaining there in stealth would allow them to conduct cyber espionage and collect additional confidential information from the victim environments for future operations,” said Claire Zaboeva, a cyberthreat analyst at IBM’s X-Force and co-author of the report.
The hacking targets included the European Commission’s Directorate-General for Taxation and Customs Union, which would be in direct contact with several countries and could open pathways for more targeted attacks.