Menu
Scamwatch round-up – Office 365, Click Energy

Scamwatch round-up – Office 365, Click Energy

Fake billing emails continue to haunt Australians’ inboxes

ARN provides a weekly wrap of the phishing scams, malware attacks and security breaches impacting organisations across Australia.

This week, a phishing email scam poised to hit Aussie inboxes and linking to a fake Office 365 page was identified.

Email filtering company MailGuard took to Twitter to alert customers of it. The company said the zero day phishing email was blocked on 6 February.

MailGuard said the simple email containing a PDF attachment had a “click here” link which led to a fake Office 365 page.

Last year, a phishing scam impersonating Microsoft Office 365 affected local organisations across the country

The fake email was a simple HTML message that told recipients they needed to upgrade their accounts as they have gone over their quota. The link contained in the message, took users to a fake but legitimate looking Microsoft Office 365. 

Screenshot (MailGuard)
Screenshot (MailGuard)

Late last week, a fake Click Energy bill notification was also picked up. According to MailGuard, the message originated from compromised MailChimp accounts.

The email is regarded as simple as it does not contain a logo and uses generic text.

The message contains a link supposed to open a bill but which points to a file with JavaScript malware.

Screenshot (MailGuard)
Screenshot (MailGuard)

The Australian Cybercrime Online Reporting Network’s (ACORN) latest report – for the September quarter – showed more than 12,000 cyber crimes were reported during the period.

Of those, 49 per cent were scams or fraud, 22 per cent of purchase or sale and eight per cent cyber bullying.

Queensland was the state to report more scams, with 29 per cent, followed by Victoria (26 per cent) and New South Wales (23 per cent).

The majority of the scams were reported to have originated via email.


Follow Us

Join the newsletter!

Or
Error: Please check your email address.

Tags malwarephishingscamOffice 365

Show Comments