Email scam uses fake invoices to send malware

Posted by Emmanuel Marshall on 22 May 2018 10:19:52 AEST


Watch out for this email invoice scam.

MailGuard has detected fake invoice notifications like the one in the screenshot above, being sent from a wide variety of compromised email accounts.

The email subject line on these scam messages displays “Invoice INV-4539” plus a random company name, including:

  • "Absolute Dentistry"
  • "Edwards Moore Architects"
  • "Arafura Connect"
  • "Voss Property Services"
  • "St Kilda Road Investment"
  • "Anthony Thomas"
  • "Tarocash"
  • "Vanilla Room"
  • "Grant Roger"
  • "Ausmet Development Pty Ltd"
  • "Georgia Harper Landscape Designer"
  • "Overlander Homes"
  • "Cridlands MB Lawyers"
  • "F R Engineering Pty Ltd"
  • "Citywide and Macedon Fencing Group Pty Ltd"
  • "Standrite Australia Pty Ltd"
  • "Larter Co Pty Ltd"

This message is being sent from a wide variety of compromised email accounts, which may have been hijacked from real company domains. These include:

  • lucybrown@valsanmusic.com
  • enquiries@angstrommetrology.com
  • tomfrancis@intellectbpo.com
  • invoices@valleyinfrared.com
  • katie.boettcher@angstromcalibration.com
  • elaine.rosscraig@sheilahglover.com
  • nicola@europeanamericancapitaladvisors.com
  • ian@simpleproductsonline.com
  • nicola@europeanamericancapitaladvisors.com
  • invoices@valleyinfrared.com
  • invoices@valleyinfrared.com
  • ian@simpleproductsonline.com
  • lucybrown@valsanmusic.com
  • ian@simpleproductsonline.com
  • invoices@valleyinfrared.com
  • katie.boettcher@angstromcalibration.com
  • elaine.rosscraig@sheilahglover.com
  • invoices@valleyinfrared.com

The objective of this scam is to get victims to click on the “view invoice” button in the message, which links to a malware infected file.

180522-inv-malware-2

 

Don't get scammed


If your company’s email accounts aren’t protected, scam emails like the one above are almost certainly being received by your staff.  Cybercriminals know people can be tricked; that’s why they send out millions of scam messages and put so much effort into making them look convincing.

People are not machines; we're all capable of making bad judgement calls. Without email filtering protecting your business, it’s just a matter of time before someone in your organisation has a momentary lapse of judgement and clicks on the wrong thing.

For a few dollars per staff member per month, you can protect your business with MailGuard's predictive email security.
Talk to an expert at MailGuard today about making your company's network secure: click here.

 

Stay up-to-date with new posts on the MailGuard Blog by subscribing to free updates. Click on the button below:

Keep Informed with Weekly Updates

 



Topics: Malware Zero Day email scams Threat Update

Back to Blog

Comments:


Something Powerful

Tell The Reader More

The headline and subheader tells us what you're offering, and the form header closes the deal. Over here you can explain why your offer is so great it's worth filling out a form for.

Remember:

  • Bullets are great
  • For spelling out benefits and
  • Turning visitors into leads.

Recent Posts

Posts by Topic

see all