Coronavirus phishing attack disguises as a message from the Center for Disease Control

Graham Cluley
Graham Cluley
@[email protected]

Coronavirus phishing attack disguises as a message from the Center for Disease Control

With the number of people infected by the Coronavirus increasing around the world, online criminals are showing more signs of exploiting public concern.

Security researchers at Kaspersky have identified as phishing campaign that poses as an email from the United States’ CDC (Centers of Disease Control).

The email’s subject line is certainly likely to catch the eye of many people, as it claims to be emergency information related to “Coronavirus outbreak in your city”:

Sign up to our free newsletter.
Security news, advice, and tips.
Coronavirus phishing
Coronavirus phishing email. Source: Kaspersky

Casual examination of the email might make users believe they are reading an email seny by – the genuine internet domain of the Centers of Disease Control. However, the email hasn’t been sent from the CDC’s servers, but instead uses the lookalike address of

And the link shown in the HTML email pretends to go to, but instead takes the unsuspecting user to a fake Microsoft Outlook login page that attempts to steal users’ email login credentials.

Outlook phishing
Outlook phishing page. Source: Kaspersky

The domain was first registered on January 31 2020, in an opportunist attempt by cybercriminals to exploit the Coronovirus outbreak for their own ends.

Whois information for

The researchers at Kaspersky also warn that they have seen a separate scam, using the slightly different domain (registered on 2 February 2020).

In this instance, the emails are not being distributed to phish for passwords but are instead urging recipients to donate Bitcoin for research into a Coronavirus vaccine.

Corona bitcoin
Coronavirus email asking for Bitcoin donation. Source: Kaspersky

Last week I described how cybercriminals were exploiting fear of the Coronavirus to spread malware.

Once again we’re reminded that cold-hearted scammers and fraudsters don’t have any qualms about exploiting human misery, and are prepared to do anything if it might net them a rich reward.

Found this article interesting? Follow Graham Cluley on Twitter, Mastodon, or Threads to read more of the exclusive content we post.

Graham Cluley is a veteran of the cybersecurity industry, having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent analyst, he regularly makes media appearances and is an international public speaker on the topic of cybersecurity, hackers, and online privacy. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

One comment on “Coronavirus phishing attack disguises as a message from the Center for Disease Control”

  1. coyote

    Just two things.

    (1) There's a typo: 'make users believe they are reading an email seny by '

    (Y instead of a T in sent).

    (2) This is one of the many things I hate about HTML emails.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.