Scamwatch round-up: MyGov, Apple Pay and more
- 19 October, 2018 10:00
ARN provides a weekly wrap of the phishing scams, malware attacks and security breaches impacting organisations across Australia.
This week, phishing emails purporting to be from MyGov and Apple Pay, among others, were being sent to Australians' mailboxes.
On 17 October, an email purporting to be sent from MyGov was identified by email filtering company Mailguard -- the purpose of the scam was to gain access to recipients' personal information and banking details.
MyGov is an Australian Government tool that gives citizens and residents access to government online services such as the Australian Taxation Office and Medicare. There are approximately 11 million people in Australia registered with MyGov.
For this scam, cyber criminals have created several fake pages purporting to be from MyGov and from local banks including Commonwealth, Westpac, St. George, ANZ, NAB and ING.
According to Mailguard, the emails were being sent from a forged sender address and the domain belongs to a hair care website owned by P&G.
On 18 October, phishing emails purporting to be from Apple were sent to Australians' inboxes.
The Apple Pay messages were designed to steal confidential personal and billing credentials, like the recipients’ Apple ID and password, mobile phone numbers, credit card data, and similarly valuable information.
The email contained links to webpages that looked like legitimate Apple ones.
"Mailguard has detected this email actually comes from one of two compromised accounts," the company said in a blog post. "We understand the domain used to host the fake Apple site was registered only yesterday / early today for the purpose of this scam.
"The inclusion of Apple Pay’s logo and branding, along with the presence of a seemingly secure and ‘official’ multiple-step procedure to verify accounts, are tools adopted to boost the authenticity of the email."
There was also an email purporting to be from eFax but was being sent from a "large number of compromised WordPress" websites, according to Mailguard.