London Daily

Focus on the big picture.
Monday, Jul 13, 2026

Hackers Are Sending Fake HIV Results And Coronavirus Emails To Infect People’s Computers

Hackers Are Sending Fake HIV Results And Coronavirus Emails To Infect People’s Computers

“Coronavirus has been exhausting for us,” said one cybersecurity researcher.
Hackers are sending emails with fake HIV results and coronavirus information that infect computers with malware, according to research from cybersecurity research firm Proofpoint.

The fake HIV emails are designed to look like they come from Vanderbilt University, possibly to exploit the credibility of the Vanderbilt University Medical Center. The emails, which include an attached spreadsheet labeled “test results,” have been sent to insurance, health care, and pharmaceutical companies. When downloaded, a user is prompted to install macros, which leads to them becoming infected with malware known as the Koadic Remote Access Trojan.

“It’s really the lure with the HIV test results and the use of a health university, that's really the thing that's interesting about this,” Sherrod DeGrippo, senior director of the threat research and detection team at Proofpoint, told BuzzFeed News.

The HIV test phishing attack emerged in late January, roughly the same time Proofpoint and other cybersecurity firms began tracking hackers using coronavirus-themed emails to infect computers. Some of the COVID-19 emails promoted fake cures and other conspiracies.

The emails targeted industries such as manufacturing, transportation, health care, and higher education. Proofpoint has had to create special tracking for malicious COVID-19 emails for the first time.

Coronavirus has been exhausting for us,” DeGrippo said.

Hackers are evolving their coronavirus messaging in line with the global response. Knowing that many companies asked employees to work from home, the hackers send emails that claim to be from company HR departments or executives. The victim would be asked to sign into DocuSign or Microsoft Word, which is when their credentials would be stolen.

They also spoofed the World Health Organization and targeted Italians once the outbreak worsened in that country.

“Italy's prominence within the coronavirus epidemic has caused the shift of it in the lure languages and geotargeting,” she said.

The HIV and coronavirus emails are effective because they inspire curiosity or fear in recipients, according to DeGrippo. “If they don't get [you with] one emotion, they're going to get the other one,” she said.

The Koadic malware used for the HIV phishing attacks gives hackers access to a computer and allows them to consider their next steps as they learn more about their victim. The next phase of the attack may come months after the initial infection. It could be ransomware, a banking trojan, or information theft. Kodiac is widely used in Eastern Europe and has been deployed by Russia, China, and Iran, though there’s no evidence any of those countries are behind this new attack.

To protect yourself from phishing, DeGrippo recommends using unique passwords across accounts, multifactor authentication, running regular virus scans on your computer, and being skeptical of emails from unfamiliar sources that trigger an emotional reaction.

“Using these really highly emotionally charged lures is becoming the standard,” she said. “We're just starting to see a move away from the shipping receipts and the invoices and the resumes into a trend of big emotional scare tactics and curiosity starters.”
Newsletter

Related Articles

0:00
0:00
Close
World Cup Visitors Turn American Big-Box Stores Into Souvenir Stops
Netflix Weighs Always-On Channels, Bundles and Short-Form Video
Passenger Is Pulled Partly Outside Ryanair Jet After Window Fails Mid-Flight
Innovation-led growth strategy
Public service reform pressure
Defence and industrial security
Labour leadership transition and economic reset
Northern England Pushes for Greater Influence in Britain’s Future Economic Model
UK Technology Strategy Focuses on Life Sciences, Digital Innovation and Research Investment
Britain and United States Maintain Focus on Pharmaceuticals Cooperation and Industrial Growth
UK Public Services Face Continued Pressure as Government Promises Visible Improvements
Regional Economic Power Becomes Key Theme in Britain’s Next Political Phase
Britain Expands Support for Small Businesses as Firms Seek Better Access to Finance
UK Economy Remains Central Political Challenge as Cost of Living and Growth Concerns Persist
National Health Service Introduces New Workplace Reviews to Improve Conditions for Healthcare Staff
UK Life Sciences Sector Secures More Than Three Billion Pounds in Investment to Support Innovation
Britain Strengthens Defence Strategy as Security Concerns Reshape Military and Industrial Policy
Andy Burnham Promises Stronger UK Defence Industry and Expanded Domestic Production
UK Government Faces Difficult Spending Choices as Labour Leadership Transition Approaches
Rachel Reeves Warns Andy Burnham of Immediate Economic Challenges After Expected Leadership Change
Andy Burnham Prepares to Lead UK Government With Plans for Regional Power Shift and Economic Reset
Government Creates Emergency Support Scheme for Financially Struggling Universities
United Kingdom Replaces Traditional Farm Subsidies With Payments Linked to Environmental Performance
National Grid Reports First Week of Electricity Generation Without Fossil Fuels
United Kingdom Financial Regulator Introduces Tougher Capital Rules for Cryptocurrency Exchanges
Belfast Harbour Expands Operations to Attract Investment Through United Kingdom and European Union Market Access
Scottish Government Threatens Legal Challenge Over Westminster Cuts to North Sea Transition Funding
United Kingdom Accelerates Trans-Pennine High-Speed Rail Project Linking Northern Cities
United Kingdom Secures Ten Billion Pound Investment for Cambridge Quantum Computing Campus
Port Talbot Steelworks Wins Support for Green Hydrogen Transition and Protection of Industrial Jobs
United Kingdom Sends Royal Navy Carrier Strike Group to Indo-Pacific as Regional Security Focus Expands
National Health Service Expands Artificial Intelligence Diagnostics Across England to Reduce Screening Backlogs
United Kingdom Launches Fifty Billion Pound Infrastructure Fund to Accelerate Housing and Construction
UK Medical Chiefs Update Health Guidance to Promote Everyday Physical Activity
Office of Communications Keeps Wikipedia Under Review Under UK Online Safety Rules
UK Defence Ministry Expands Deep-Strike Capability Through Precision Missile Programme
Russell Group Universities Warn Funding Cuts Could Damage NHS Workforce Training
UK Parliament Calls for National Emergency Broadcast as Heatwave Conditions Intensify
UK and Netherlands Strengthen Naval Cooperation With New Amphibious Defence Partnership
UK Defence Ministry Joins International Missile Programme With One Hundred and Ninety Million Pound Investment
Bank of England Warns Middle East Conflict and AI Risks Could Pressure UK Economy
UK Government Introduces New Rules to Limit Foreign Influence in Political Donations
UK and France Prepare Naval Mission to Protect Shipping Through Strait of Hormuz
United States Pressures UK to Increase Defence Spending at NATO Summit
Bank of England Warns Artificial Intelligence Investment Boom Could Create Financial Stability Risks
Bank of England Begins Direct Oversight of Critical Technology Providers Supporting UK Finance
Andy Burnham Set to Become UK Prime Minister After Labour Leadership Race Clears Path to Downing Street
Scottish Fishing Industry Calls for Emergency Support Amid Rising Costs
UK Supports Stronger European Response to Russian Actions in Ukraine
Devon and Cornwall Police Release Suspect in Ann Widdecombe Murder Investigation
×