We’ve intercepted and blocked a zero-day phishing scam, in the latest brandjacking of Australian car insurance company Bingle. The simple yet well-formatted and deceptive HTML email claims to have received your car insurance application and asks for corrections.
The email is not personalised, addressed to ‘owner of the car’ within the body of the content. The actual phishing link text reads ‘Please download your certificate and correct it’. But don’t be fooled — the URL takes you to a malicious zip file containing a JavaScript payload (an application to automate Application Programming Interface (API) requests and render HTML data).
The email sender display name is: Bingle - part of the Suncorp Group. Sender email address: admin{at}victorychurch{dot}net{dot}au. The sender domain appears to be a valid website for a South Australian church.
Bingle have been alerted via social media regarding the brandjacking of their logo for this email scam.
Compromised MailChimp email accounts on the rise
Lately we’ve seen a few compromised MailChimp accounts used to send criminal-intent emails, and this is no exception. We can confirm that the sender address for this fake Bingle email is using a MailChimp account.
If you suspect your MailChimp account has been compromised you can report it to the MailChimp Abuse Desk via Twitter.
Protect your business from cybercrime
Cyber-attacks can be enormously costly and destructive, and new scams are appearing every day. Don’t wait until it happens to your business; take action to protect your company from financial and reputational damage, now.
For a few dollars per staff member per month, add MailGuard's cloud-based email and web filtering protection. You’ll significantly reduce the risk of malicious email entering your network. Talk to an expert at MailGuard today about your company's cybersecurity needs: 1300 30 44 30
