Cybercriminals try to steal the credentials of top companies associated with the COVID-19 vaccine supply chain in an espionage effort. The attack targeted organizations associated with a public private global health partnership, called Gavi, the Vaccine Alliance, which is aiming to leverage such cold-chain companies in order to safely transport the vaccine to underdeveloped regions. The attackers sent phishing emails that purported to come from a business executive from Haier Biomedical. The email sender uses a spoofed domain, haierbiomedical[.]com while the legitimate domain is www.haiermedical.com.
Source: https://threatpost.com/attacks-covid-cold-chain-orgs/161838/