MailGuard Blog

Amazon Web Services (AWS) account holders need to be on the lookout for a phishing email purporting to be from the AWS-Support team, advising recipients that they need to consent to the processing of their personal data in accordance with EU Regulations. The shift to remote working means that cloud services are in demand, with cybercriminals taking the opportunity to capitalise on the increased use by businesses of services like AWS to steal credentials.

Commonwealth Bank customers are again being targeted by cybercriminals with a new phishing scam designed to steal customers’ credentials, including their name, date of birth, zip code, phone contact, credit card and client number and password details. As one of the most respected brands in corporate Australia, and an expansive customer base, Commonwealth Bank customers must remain vigilant when receiving emails about problems with their account.

Email users need to be extra vigilant, with MailGuard intercepting an email phishing scam purporting to be from a well-known repair company, however the email is in fact from a compromised email account, making it difficult to discern from a legitimate request. File sharing amongst colleagues and clients is commonplace, and a practise that cybercriminals have taken advantage of in recent times for credential harvesting and potentially install malware onto computer networks.  

PayPal users should be watchful before opening or responding to any generic emails advising of a ‘limit’ being placed on their account, as it is most likely a devious attempt by scammers to get a hold of account and credit card information. Many of us rely on PayPal, (approximately 392 million, in fact) as a trusted way to make and receive payments, with 29 million active merchants using the service to run their online businesses, particularly in the current pandemic influenced times. This is not the first time that MailGuard has intercepted a scam spoofing the popular global payment provider, with the rise of online shopping and ease of use from various, perhaps, unsecured devices, providing a vantage point for criminals.

Millions of Commonwealth Bank NetBank customers are at risk of having their details stolen via the latest phishing email intercepted by MailGuard. This is the second time in the last month that scammers have purported to be the bank, one of Australia’s largest financial institutions, in an attempt to lure unsuspecting victims into providing sensitive data, such as customer account information and credit card details for credential harvesting purposes. Cybercriminals often imitate financial institutions due to their large customer base, trusted name, and the plethora of data at hand.  

An email phishing scam purporting to be from Australia Post has been intercepted by MailGuard. There has been an increase in parcel deliveries due to the lockdowns and COVID restrictions currently happening Australia-wide, and cybercriminals are taking advantage of expectant recipients by using email phishing scams from commonly used delivery services such as DHL and Australia Post to secure sensitive details for credential harvesting purposes. It’s important that email users remain extra cautious before opening any emails pertaining to deliveries, particularly one’s that you are not expecting. Levels of anticipation may be further heightened by recent delays resulting from AusPost workers in COVID isolation.  

The latest phishing attack intercepted by MailGuard begins with a scam email purporting to be via popular collaboration tool, SharePoint. As workforces become more remote, it is common for employees to send confidential business documents to one another, and with over 200 million users of Microsoft SharePoint, there is a high likelihood unsuspecting victims will fall for the scam.  

Purporting to be from Telstra, the latest phishing scam intercepted by MailGuard targets customers of the popular telecommunications provider in an attempt to swindle unsuspecting victims into providing sensitive data, such as credit card and user login details. As a large company with a trusted brand and millions of customers, Telstra is a popular target for cybercriminals peddling phishing scams of this nature.   

Think twice before you click on this nasty voicemail attachment landing in inboxes this week. With an innocent “Left you a message” subject line, prefaced by a local telephone number and stamped with the date, the email is marked as ‘High Priority' and ‘Sent via Microsoft Voice’. The email is targeting a business in the United States and comes from a compromised account belonging to a legitimate printing company (mountain-media(dot)com) in Colorado.

Scammers have once more targeted customers of popular streaming service, Netflix, falsely warning victims that their membership is going to be cancelled. Entertainment services such as Netflix are a popular target for cybercriminals, as they try to steal the credentials of millions of users to sell on the dark web, and to use in follow-on criminal campaigns. 

Bank of Queensland customers have been targetedby aclever phishing scammasquerading as a ‘payment alert’notification delivered to unsuspecting victims by email. This is the second phishing attempt that MailGuard has intercepted involving a financial institution this week, following an email fraud spoofing ANZ. 

ANZ Banking Group customers be wary of ‘alert’ emails claiming there has been a ‘Suspicious Login’ attempt on your online banking account. Targeting over 9 million customers of the bank, the cybercriminals have crafted the phishing email to steal personal details from clients for credential harvesting, and likely for fraudulent payments. It’s not surprising that criminals have spoofed a trusted name such as ANZ.  

Another day, another fraudulent package notification vying for your attention. DHL is the focus of the latest phishing scam being intercepted by MailGuard. With the subject reading ‘Your package is stopped in one of our stations’, the email claims that a small fee needs to be processed in order to have the package released.

DocuSign seems to be winning the popularity contest amongst cybercriminals as MailGuard intercepts a second phishing scam imitating the global electronic agreement provider in just a matter of days. The scam emails appear to come from a compromised account belonging to a U.S. immigration law firm, as recipients are presented with an email purporting to be from the Accounts Department notifying the victim of an ‘EFT confirmation’ in .pdf format. Other trusted names such as Office 365, Gmail and AOL have been impersonated in the process.  

Cybercriminals are once again targeting the vulnerability of those patiently awaiting parcel deliveries, with a recent email scam pretending to be from leading international express delivery service, DHL Express. MailGuard has intercepted several phishing attempts imitating the trusted logistics service provider over the past year, mirroring the rise in online deliveries throughout the COVID-19 pandemic.