MailGuard Blog

The United States Department of Homeland Security (DHS) has just announced a new division specifically to handle cyber threats against critical infrastructure. The National Risk Management Center will manage cross-sector responses to cyber-threats against vital US assets like the recently exposed attacks against the US power grid.

Banks are well-trusted institutions, so when cybercriminals are looking for good trademarks to use in their email attacks they often rip-off bank branding.

This new scam email uses the NAB trademark to try and persuade recipients that it is a genuine notification message from their bank. The message tells the victim that they have been sent a “SWIFT message” as a “confirmation of payment” to their account.

Microsoft’s stature as a trusted household name makes them a lucrative brandjacking target for cybercriminals.

This latest phishing attack - shown in the screenshot above - uses the “Office 365” trademark to persuade recipients that the email is legitimate and get them to click on the “recover messages” link.

If you’ve visited the login screen above, you may have fallen victim to a new phishing scam MailGuard has discovered.

Although it looks like a real bank login page, it’s actually a phishing site set up by criminals to harvest people’s bank passwords.

MailGuard has detected a new email-based cyber-attack using Telstra branding to try and deceive victims.

As you can see from the screenshot above, this email scam is quite well designed and makes use of extensive graphical elements.

MailGuard has detected a new scam that is using fake AVG branding to try and trick victims.

“Your email account has been BLACKLISTED,” the message warns the recipient, “our service team will terminate its service within 24hrs…”

In the lexicon of online security there are cybercriminals, black hat hackers (hackers who do crime), white hat hackers (hackers who help prevent cyber-attacks), hacktivists (hackers who use their skills for political causes) and then there are “bug bounty hunters.”

A July 13 Washington Post  article reported the indictment of 12 Russians accused of hacking the US Democratic Party in 2016.

The indictment documentation includes detailed information about the process the accused Russian hackers allegedly used to gain access to Democratic Party email accounts and networks.

MailGuard has detected a new phishing attack exploiting the trademarks of the Law Council of Australia, Office 365, Yahoo, GoDaddy, Hotmail, AOL, The Law Institute of Victoria, and many others.

This phishing attack is aimed at collecting the login names and passwords of victims.

“As a small business, we find it challenging to identify threats and have measures in place to mitigate them with very limited time/resource.”

“I find the board’s posture is too relaxed, suggesting lack of acute awareness of the real risks.”

“Lack of concern and awareness around the risk and consequence. Directors and management are more concerned about accessibility than protection (until an event occurs, that is...)”

If you get a LinkedIn networking invitation from “Professor Barry James Marshall” in your inbox don’t click.

MailGuard has discovered that the fake LinkedIn notification email shown in the screenshot above, is actually a phishing scam designed to harvest your LinkedIn login credentials.

MailGuard has detected a new phishing email attack brandjacking Telstra.

Phishing is one of the most common and harmful cybercrime types. The sophistication of these email scams varies a lot, from simple plain-text emails to very realistic forgeries that are hard to distinguish from genuine email notifications.

GDPR - the EU General Data Protection Regulation - is now in effect. The regulations are designed to protect the data privacy of EU residents, but because the rules affect any company handling EU data, the true influence of the GDPR is international in scope.

This scam message is meant to look like a quote request and is accompanied by an attachment containing malware.

MailGuard has detected this innocuous looking message which reads “we will like to know the price and availability of the following item in attach.”

MailGuard has detected a new email scam attempting to deliver malware to victim’s computers.
The scam message - shown in the screenshot above - shows MYOB branding and purports to be a document notification email.