Europol: Coronavirus Crisis Spurs Rise In Ransomware, DDoS Attacks

The coronavirus crisis has created a window of opportunity for cyber-attackers targeting organisations and critical services via ransomware and denial-of-service attacks, according to Europol.

Information from EU member states and Europol partner countries indicates some criminals using ransomware may have “intensified their activities”, Europol said.

They are also “actively recruiting collaborators” to maximise the impact of their schemes.

Europol found that the period between an initial ransomware infection and the activation of the ransomware has grown shorter since the beginning of the Covid-19 pandemic.

Image credit: World Health Organisation

‘The worst in humanity’

“Criminals do not wait for the ideal moment to launch the attack but try as soon as possible,” the agency said in a new report.

“This pandemic brings out the best but unfortunately also the worst in humanity,” said Europol executive director Catherine De Bolle.

She said criminals are taking advantage of the “surreal situation”, which sees a huge number of people working from home, often protected by outdated cyber-security systems.

The phishing and ransomware campaigns launched to exploit the crisis are “expected to continue to increase in scope and scale”, the study said.

Criminals have exploited existing ransomware during the crisis, but new ransomware families have also continued to appear.

Meanwhile, distributed denial-of-service (DDoS) attacks have registered a “slight increase” in recent weeks.

But Europol said it expects these attacks to grow further, in part because they represent an “accessible type of crime with limited barriers to entry”.


Both types of attack involve the disruption of computing infrastructure, which has become ever more critical with so many people working remotely – making organisations more susceptible to extortion attempts.

“The pandemic may multiply the damaging impact of a successful attack against certain institutions, which reinforces the necessity for effective cyber resilience,” Europol said.

The agency warned that Dark Web marketplaces and digital communications channels are likely to be “increasingly used” to facilitate the distribution of illicit goods.

Europol also noted a rise in the spread of disinformation during the crisis as well as hybrid attacks involving cyberattacks and disinformation, disruption of critical services, undermining of public trust in governmental institutions and exploiting social vulnerabilities.

Those hoping to benefit from disinformation range from criminals looking for financial gains from digital advertisements, through to state actors looking to augment instability, Europol said.

It said users’ receptiveness to disinformation arises, paradoxically, from the oversaturation of available information along with a “perceived lack of trustworthy sources of news”.

European Union cybersecurity agency ENISA recently issued advice for employees on how to protect themselves from cyberattacks when working remotely.

Matthew Broersma

Matt Broersma is a long standing tech freelance, who has worked for Ziff-Davis, ZDnet and other leading publications

Recent Posts

US DoJ Charges Six Russian GRU Officers For Cyberattacks

Hackers also targeted this year's delayed Olympic Games in Tokyo says UK, as the US…

1 hour ago

Google Discloses Biggest-Ever DDoS Attack

Google says it successfully fended off a 2.5 Tbps denial-of-service attack in 2017, making it…

1 day ago

Microsoft Issues Two Emergency Windows Patches

Microsoft publishes out-of-band patches for bugs in Visual Studio Code and Windows Codecs Library that…

1 day ago

Zoom Introduces Paid Events, In-Meeting Apps

Zoom aims to capitalise on its massively increased user base with platform for paid events…

1 day ago

European Telecoms Trade Group Warns Against Banning Chinese Vendors

Banning Chinese telecoms equipment vendors for political reasons will increase costs and delay network upgrades,…

1 day ago

Twitter Changes Policy On Blocking ‘Hacked Materials’

Twitter will no longer block links to articles containing hacked materials, following criticism over treatment…

1 day ago