MailGuard Blog

It looks like the series of banking-related email scams that MailGuard detected over the last month is far from over. Having imitated banks such as Westpac, ANZ and BankWest recently, cybercriminals have once again spoofed National Australia Bank (NAB) in a bid to steal users’ confidential information.

The banking industry is increasingly becoming a favourite among cybercriminals. After intercepting multiple variations of an email scam spoofing NAB earlier today, MailGuard has now detected another phishing email scam purporting to be from Westpac.

Imitating leading financial institutions such as banks is a common trick adopted by cybercriminals to again access to users’ confidential data. MailGuard intercepted multiple variations of a large-scale phishing email scam purporting to come from National Australia Bank (NAB).

Do not be too quick to click everything in your inbox. Cybercriminals circulated multiple variations of a malicious phishing email scam on Friday (AEST).

Careful not to click through on the latest email phishing scam impersonating Microsoft Exchange. The first run of the attack began hitting email inboxes on Thursday morning AEST, 9^th May 2019.

Popular telecommunications company Optus has once again been spoofed by cybercriminals.

The NAB Bank's branding has been exploited by criminals in a new phishing fraud detected by MailGuard.

The email shown above appears to be a notification from the bank advising the recipient that their account “is now locked.”

The message contains several typical elements of a phishing email:

The FBI warned US banks last week that they are expecting a large-scale fraud attack involving compromised ATM cash machines in the near future.

“Cyber criminals are planning to conduct a global Automated Teller Machine (ATM) cash-out scheme in the coming days,” the FBI advised banks in a confidential message revealed by the KOS blog, Aug 12.

If you’ve visited the login screen above, you may have fallen victim to a new phishing scam MailGuard has discovered.

Although it looks like a real bank login page, it’s actually a phishing site set up by criminals to harvest people’s bank passwords.

Scam alert: MailGuard has detected a new email scam using St George Bank trademarks to try and deceive victims into submitting their bank login details to a phishing site.
This cunningly designed scam closely resembles a genuine St George communication.

When people get an email from their bank, the last thing they suspect is a scam, so of course, cybercriminals regularly exploit the trademarks of well-known banks to make their phishing emails more convincing.

Exercise caution if you receive an email claiming to be from the Commonwealth Bank, today.

A scam email - shown in the screenshot above - has been detected by MailGuard, urging recipients to “log on to Netbank” by clicking on a link.

As brandjacking scams go, there’s one category of trademark that is especially powerful for scammers to use: banks.