MailGuard Blog

Wednesday morning (AEST), a new email phishing scam started to arrive in inboxes, impersonating Microsoft Office 365. The subject reads: '(5) messages returned - failure to sync.'

Careful what you click. Earlier today MailGuard intercepted yet another criminal intent email scam impersonating popular accounting software brand ‘Xero.’

In the latest example of brandjacking, this evening we are seeing a run of phishing emails impersonating major retail brands. The criminal emails are leveraging several different compromised MailChimp accounts to bypass traditional email scanning software, and then using the power of major household name brands to entice users to click.

In a very large scale and ongoing email scam, cybercriminals are yet again impersonating accounting firm MYOB, delivering a fraudulent DocuSign supply order to inboxes. This is the second ‘brandjacking’ in the space of the last week for MYOB, with a similar invoice scam impersonating the leading accounting software last Tuesday.

A new e-ticket infringement email scam has been landing in inboxes throughout today. Starting late in the morning AEST, the run continued for several hours with a display name ‘Anna POL #6635’ and display address of ‘strathmorecc(at)live(dot)com(dot)au’

In a cyber-attack that is still ongoing, cyber criminals are mimicking leading accounting software brand MYOB, delivering fake invoices to unsuspecting email recipients. The large-scale attack was first blocked by MailGuard early on Tuesday AEST.

Warn your teams to be careful about clicking on any strange emails when they get to their desks this morning. Starting at 6:00pm and 6:19pm respectively, two new email scam from eFax Corporate and Virgin Media, were arriving in Australian inboxes last night. MailGuard successfully blocked the scams, with the last messages ceasing at 10:02pm and 10:56pm.

Two very large phishing campaigns are landing in business inboxes this morning. First stopped by MailGuard just before 9:00AM AEST, the scams are impersonating Telstra and Brisbane eToll operator go via.

Forever popular with cybercriminals, this week has seen a series of email scams going directly for the money-jar. Leveraging major accounting software brands that are popular with the SMB segment – like MYOB, Xero and Sage – the cybercrime networks may be chasing smaller businesses who don’t have dedicated infosec or IT help to defend against scams.

Look out today for a sophisticated DVD phishing scam using a compromised MailChimp account to deliver malicious code. The email from ‘DVDs Manager’ is framed as an ’Order confirmation.’

Cybercriminals are targeting Australian business inboxes with a very large run of scam emails today, purporting to be from ‘ASIC Messaging Service.’

Earlier today malicious emails began targeting Australian inboxes in the form of fake Telstra email bills. In a twist, the emails claim ‘Good news – your account is currently in credit, so no payment is required at this time.’ 

A convincing fake ANZ Bank phishing email is today targeting customers. The e-mail advises recipients that their ‘last payment was unsuccessful’ and prompts them to login, so those behind the attack can harvest banking credentials. 

Cybercriminals launched a large-scale email attack yesterday impersonating NSW Roads and Maritime Services. The attack follows last week’s ASIC scam, impersonating yet another government agency.

It’s almost a week since we learned about the worldwide cyber attack known as WannaCry, a ransomware cryptoworm outbreak.