‘Pure Hell for Victims’ as Stimulus Programs Draw a Flood of Scammers – The New York Times:

“Over the last month, 4,305 malicious website domains were set up to take advantage of people looking for new forms of government support, according to the security firm Check Point. The fake sites, with names like whereismystimulus and 2020reliefprogram, generally ask people to input their personal data with the promise that they can get information about their checks. But hackers then use the data against those who fall for the trick.”