The Health Sector Cybersecurity Coordination Center (HC3) has put out an advisory about a malicious website pretending to be a live map of the spread of Coronavirus COVID-19 Global Cases. By taking advantage of the high profile events surrounding COVID-19, the website is attracting unwitting visitors with intent of infecting their systems with the AZORult Tojan. This malware is a well known trojan and is designed to steal sensitive information from users.

The full HC3 Advisory can be downloaded here.

SR2 Solutions recommends that system administrators block traffic to the domain name corona-virus-map[dot]com, as mentioned in the attached HC3 advisory. If any assistance is needed for your organization in this matter to help with prevention or with remediation if your system has been infected with the AZORult Trojan, please contact SR2 Solutions as soon as possible at 1-866-422-1199.