Hackers target COVID-19 vaccine cold chain

By William Smith
IBM researchers have discovered that the international supply chain for COVID-19 vaccines is being targeted by hackers...

IBM researchers have discovered that the international supply chain for COVID-19 vaccines is being targeted by hackers.

Specifically targeted is the so-called “cold chain”, which keeps vaccines at the right temperatures during transport so that they don’t degrade.

The attack takes the form of a “global phishing campaign” against organisations providing the cold chain, beginning in September 2020 and spanning across six countries. Attackers impersonated an executive from Haier Biomedical and sent emails to other organisations to “harvest credentials”

In a blog post, Claire Zaboeva, Senior Strategic Cyber Threat Analyst, IBM, said: “While firm attribution could not be established for this campaign, the precision targeting of executives and key global organizations hold the potential hallmarks of nation-state tradecraft.” She went on to say: “IBM Security X-Force urges companies in the COVID-19 supply chain — from research of therapies, healthcare delivery to distribution of a vaccine — to be vigilant and remain on high alert during this time.”

The news comes as the UK became the first country in the world to approve the Pfizer/BioNTech vaccine for use, with 800,000 doses on their way. That vaccine is precisely the type supported by the cold chain, as it needs to be stored at -70C, highlighting the need for cyber security as the vaccine rollout begins.

Chris Ross, SVP Sales, International, Barracuda Networks, commented: “Phishing scams have surged since the outbreak of Covid-19 and the UK’s first national lockdown, with our recent data showing that spear-phishing campaigns have been disproportionately targeting schools and Universities since the start of the pandemic. However, this is the first time that a significant phishing campaign has been used on a global scale to disrupt the progress of our battle with the coronavirus – this issue must be taken extremely seriously by all afflicted targets and organisations who have anything to do with the logistics, transport or distribution of the vaccine, who may have already been breached, and do not yet know it.”

Share

Featured Articles

IBM and NASA to research impact of climate change with AI

New IBM foundation model technology leverages NASA earth science data for geospatial intelligence

'Change is the new normal' Accenture cloud study finds

Accenture, a global cloud services leader, shares its insights into the remarkable value that cloud automation is unlocking for businesses across the globe

Zurich selects AWS to help accelerate digital transformation

As its preferred cloud provider, global insurance leader Zurich will use AWS capabilities to speed innovation and meet regulatory and security requirements

Technology can overcome public sector data privacy concerns

Data & Data Analytics

US-EU partnership to drive global advancements in AI

AI & Machine Learning

Survey into future of cloud security in the Middle East

Cloud & Cybersecurity