As governments around the world have paid out relief checks during the COVID-19 crisis, it might seem reasonable to receive some form of email communication from governments about the status of any money being sent out.

Hackers know this, and have spoofed such notifications. This email is purported to come from both the World Health Organization and International Monetary Fund. 

This email should send off tons of red flags. The grammar and spelling are way off. Plus, WHO and IMF (and the UN) don't send direct relief checks, during the pandemic or any time.

Avanan easily caught this. As you can see below, there were a number of factors that tipped off our AI: 


Despite what looks like an obvious phishing email, this passed by Secure Email Gateways.

Subscribe to Our Attack Briefs for More Research