New email scam alert: Brandjacked AGL Electricity bill is a fake

Posted by Akankasha Dewan on 09 October 2018 13:14:36 AEDT

Don’t be fooled if you receive an email citing an electricity bill from AGL – you may end up paying more than just the bill.

Having forged AGL’s logo and credentials, cybercriminals are sending out emails titled ‘AGL electricity bill’ to inboxes.

The email informs recipients that they have received a summary of their latest electricity bill from ‘AGL Energy’ and contains multiple links within its body. All links lead to a legitimate AGL page, except for one.

AGL Electricity Bill Scam

Unsuspecting recipients who click on the ‘Download bill (PDF)’ button in the email are led to a compromised Wordpress website which then redirects to another compromised site.

MailGuard has learnt recipients are then receiving a prompt to download a ZIP file, containing a malicious payload.

The email actually comes from one of a large number of compromised Wordpress websites that are linked to in the email.

Don't get scammed

If your company’s email accounts aren’t protected, scam emails like the one above are almost certainly being received by your staff.  

Cybercriminals know people can be tricked; that’s why they send out millions of scam messages and put so much effort into making them look convincing.

People are not machines; we're all capable of making bad judgement calls. Without email filtering protecting your business, it’s just a matter of time before someone in your organisation has a momentary lapse of judgement and clicks on the wrong thing.

  For a few dollars per staff member per month, add MailGuard's cloud-based email filtering protection to your business security. You’ll significantly reduce the risk of new variants of malicious email from entering your network. Talk to an expert at MailGuard today about your company's cybersecurity needs:

Stay up-to-date with new posts on the MailGuard Blog by subscribing to our email updates. 

Keep Informed with Weekly Updates


Topics: email fraud Threat Update ZeroDay Malicious payload credential stealing emailscam fastbreak

Back to Blog


    Something Powerful

    Tell The Reader More

    The headline and subheader tells us what you're offering, and the form header closes the deal. Over here you can explain why your offer is so great it's worth filling out a form for.


    • Bullets are great
    • For spelling out benefits and
    • Turning visitors into leads.

    Recent Posts

    Posts by Topic

    see all