NAB Customers Targeted in new Phishing Email Scam

Posted by MailGuard on 13 January 2022 16:31:59 AEDT

National Australia Bank (NAB) has once again been impersonated by cybercriminals in a phishing email scam designed to steal users’ confidential data.

 

Customers should be wary of an email titled “Please review your account” claiming that their debit card has been blocked.

 

Intercepted by MailGuard, this new phishing scam advises customers that their “debit card has been temporarily blocked” and that “online payments and cash withdrawals can’t be made until the issue is resolved.” To create a sense of urgency, the email also asks to “confirm your details within the next 48 hours.”

 

Sent from “NAB”, the sender name is spoofing National Australia Bank with the actual sender address of “oren(at)orentzo(dot)co(dot)il”, and an email subject reading, “Please review your account”.

 

In this case the scammers have added a degree of sophistication by varying the sender email addresses. Using different SendGrid email addresses i.e. airmaster(dot)com(dot)au(at)sendgrid(dot)net or lynchgroup(dot)com(dot)au(at)sendgrid(dot)net, the scammers aim to avoid being be blocked by email security services.

 

Read More

Don’t Panic, Netflix Hasn’t Blocked Your Account

Posted by MailGuard on 10 January 2022 15:05:23 AEDT

Got an email from Netflix claiming ‘Your Account Has Been Blocked’? Take care, it’s likely to be the latest scam email that is now being intercepted by MailGuard. The email asks customers to ‘Update current billing information’, advising that the service is ‘unable to approve your payment for your next subscription cycle’.

 

Sent from ‘Support’, the sender email is actually ‘support(at)cu-newyearparty2022(dot)com’,  a domain address registered within the last month, and not an official Netflix account. The mail server is hosted in Japan, and the websites' domain appears to be registered in India, hosted by Newfold Digital, a very large web hosting company.

Read More

Banking Scam: “BOQ Account Closed” Phishing Email Circulating

Posted by MailGuard on 06 January 2022 13:11:48 AEDT

BOQ (Bank of Queensland) customers should be wary of email’s claiming that there is a problem with their account. A new email phishing scam is being blocked by MailGuard, with the subject of ‘BOQ Account Closed’, it informs recipients that they have ‘1 New Message & Alert In Your Online Banking Account’.

 

Sent from ‘BOQ’, with a convincing ‘noreply(at)boq(dot)com(dot)au’ sender email address, customers could be forgiven for thinking that it may be authentic. To add to it’s credibility, the criminals behind the attack have also included the copyright information and Australian Credit License number for the bank.

Read More

Australia Post “Package Pending Status” Phishing Scam

Posted by MailGuard on 05 January 2022 14:01:36 AEDT

A new Australia Post email phishing scam seeks to take advantage of the recent rush of deliveries over the Christmas and New Year break, and with many more Australians still isolating and reliant on online orders due to the continuing spectre of COVID19, they could easily fall prey for the scam. It advises recipients that a shipment is awaiting instructions, with a small fee of $1.99 (AUD) now due.

 

Sent from ‘Austpost’, the sender name is spoofing Australia Post with the actual sender address of ‘toolbox(at)registr(dot)com’, and an email subject reading, ‘Package pending status!’.

Read More

Crazy Domains Customers Targeted in Fake Account Suspension Phishing Email

Posted by MailGuard on 23 December 2021 13:57:16 AEDT

Scammers have mimicked one of Australia’s leading domain registrar and web hosting companies, Crazy Domains, in a phishing email currently being blocked by MailGuard. The fake renewal email targets vulnerable customers, mainly small businesses, who are told that they are at risk of having their account suspended if they do not update their credit card details, creating urgency for customers that need to ensure that their website is running, particularly during to the busy holiday period upon us.  

Read More

‘Encrypted Fax’ Alert Scam Email Brandjacks Microsoft

Posted by MailGuard on 22 December 2021 14:28:08 AEDT

A phishing email, purporting to be from a medical imaging business, uses Microsoft branding to try and trick users into providing cybercriminals with their Outlook Web App email and password details. It appears both the email address and server, from two different businesses, have been compromised in this phishing attempt. Users are urged to remain cautious and check any unfamiliar emails twice before clicking on any links.  

Read More

Westpac Customers Targeted in Online Banking Phishing Scam

Posted by MailGuard on 16 December 2021 15:32:53 AEDT

Millions of Westpac online banking customers are being targeted in a phishing scam that aims to steal crucial details, including login and credit card information. With the holidays in sight, and many Australians’ relying on their online banking for purchases, paying bills, and checking their bank accounts, scammers have used emotive messaging to trick even the savviest user into thinking this may be a legitimate communication from Westpac.  

Read More

Phishing Attempt Masquerades as Smartsheet ‘Commercial Credit’ File-Share Email

Posted by MailGuard on 13 December 2021 17:03:10 AEDT

Microsoft Office 365 and Smartsheet users are cautioned to be aware of any email correspondence asking you to open and sign a ‘Confidential Commercial Credit’ agreement. This is a phishing attempt, that not only aims to steal sensitive login credentials, but potentially download malware, that could be incredibly damaging to networks. With millions of Smartsheet and Microsoft users worldwide, it is more than likely that innocent victims will fall prey to this phishing attempt, particularly since the scammers are using compromised email addresses to trick recipients, utilising trusted Microsoft branding elements and given the frequency of shared documents amongst time-poor workers. Therefore, recipients are warned to remain vigilant and refrain from downloading any suspicious or unexpected files.  

Read More

Scam Alert: Fake DHL Express ‘Shipment Notification’ Phishing Email Circulating

Posted by MailGuard on 09 December 2021 11:53:42 AEDT

Parcel delivery scams are surging, with the latest phishing email being blocked by MailGuard impersonating leading international delivery service, DHL Express. Once again, cybercriminals are targeting the vulnerability of those urgently awaiting packages, particularly from overseas. There has been a rapid rise in parcel delivery scams in recent weeks, mimicking logistics providers such as DHL and Australia Post, with scammers no doubt making the most of the festive season to lure in unsuspecting victims.  

Read More

Dangerous Australia Post Parcel Delivery Scam Attempts to Steal Customer Credentials

Posted by MailGuard on 06 December 2021 13:52:31 AEDT

A nasty parcel delivery scam purporting to be from Australia Post is currently being blocked by MailGuard. With the festive season well and truly upon us, combined with the increase in parcel deliveries due to COVID related restrictions that are still in place nation-wide with customers eagerly awaiting packages, there is no shortage of phishing attempts by cybercriminals who are taking full advantage to steal sensitive credentials for follow-on criminal activity. It’s imperative that Australia Post customers remain vigilant upon receiving any communication pertaining to deliveries, especially one’s that you are not expecting.  

Read More

Scammers Mimic Microsoft with ‘Spam Notification’ Phishing Email

Posted by MailGuard on 02 December 2021 13:01:12 AEDT

Microsoft customers are being targeted with a fraudulent ‘Spam Notification’ email advising them that a message has been quarantined by the ‘Security and Compliance Center’. In fact, this is a bid by cybercriminals to lure unsuspecting victims into providing them with sensitive Microsoft Office 365 credentials. The scam is unique in that it is mimicking Microsoft’s own email security safeguards, which could confuse users. This phishing attempt is being blocked by MailGuard.  

Read More

Microsoft Spoofed In ‘Microsoft 365 Invoice’ Email Phishing Scam

Posted by MailGuard on 25 November 2021 13:01:38 AEDT

Microsoft 365 Business customers beware, there’s a phishing email currently circulating, purporting to be from Microsoft, with the subject line ‘Re: View Your Microsoft 365 Business Standard invoice’. Trusted by over 300 million customers worldwide, it’s common for scammers to spoof Microsoft to try to steal sensitive credentials from customers. Providing details such as your login email or password to your Microsoft Office 365 account means that cybercriminals can access your email, calendars, contacts and sensitive company information that can be used to design BEC scams, for identity fraud, or sold on the dark web, plus other criminal activity.   

Read More

‘4.00 AUD’ Fee Request in Fake Australia Post Parcel Delivery Scam

Posted by MailGuard on 24 November 2021 16:29:57 AEDT

An oddly styled Australia Post phishing scam has landed in inboxes, aiming to trick unsuspecting recipients into submitting their credit card details in order to receive a package. With a surge in online deliveries, and particularly at this time of the year as we reach peak holiday season, parcel delivery scams impersonating trusted names such as Australia Post are becoming commonplace, with expectant individuals and businesses warned to double-check any correspondence purporting to be from the popular delivery service. 

Read More

Phoney Proposal: Multiple Trusted Names Used in Recent Phishing Attack

Posted by MailGuard on 24 November 2021 13:41:40 AEDT

Once again, an elaborate phishing scam is the weapon of choice for cybercriminals aiming to take advantage of the weakest link in the security landscape – human beings. A recent attack has taken inspiration from history by using ‘Project Zebra’, the name given to the top-secret mission between Stalin and Roosevelt (with the aim of flying a state-of-the-art amphibious warplane) as the subject of a malicious email impersonating an employee at international engineering, design and advisory firm ‘Aurecon’. The email currently intercepted by MailGuard uses a direct interaction phishing tactic designed to entice the victim into submitting a job proposal by creating a highly personalised email from an unsuspecting Aurecon employee. It is possible that these details have either been found publicly or from a leaked database.  

Read More

Australia Post Scams Circulating Just in Time for Black Friday Sales

Posted by MailGuard on 22 November 2021 16:19:22 AEDT

The holiday season is upon us, and cybercriminals are making the most of the anticipation of consumers who are eagerly awaiting orders, with parcel delivery scams that are designed to steal your credentials. MailGuard is currently intercepting multiple fraudulent phishing emails, claiming to be from Australia Post.

Read More

    Something Powerful

    Tell The Reader More

    The headline and subheader tells us what you're offering, and the form header closes the deal. Over here you can explain why your offer is so great it's worth filling out a form for.

    Remember:

    • Bullets are great
    • For spelling out benefits and
    • Turning visitors into leads.

    Subscribe to email updates

    Recent Posts

    Posts by Topic

    see all