MailGuard has detected a new email scam involving a fake Suncorp wire transfer notification.
The email subject line reads ‘the wire transfer can not be processed.’
The message goes on to inform the recipient that ‘the detailed information regarding this transfer is on the link.’
As can be seen in the screenshot above, at the end of the message there is a text link reading ‘wire transfer details.’ This link doesn't actually go to a real document; it points to a malicious JavaScript file.
JavaScript malware can be designed to perform a wide range of harmful operations, and scammers routinely use files of this type to install spyware and viruses.
There are a few indications that this message is not legitimate.
Most notable are the poor grammar in the message and the sender address - issupport[at]australiantenders[dot]com - which has no relation to Suncorp.
‘Brandjacking’ messages like this one use the prominently displayed logos of big companies to try and trick recipients. Although the message is poorly written and does not come from a legitimate Suncorp email address, the use of the Suncorp logo might be enough to persuade some people to click on the link without thinking.
Brandjacking is a very common ploy in email scams, so it’s very important to always verify the authenticity of messages in your inbox before opening them.