Phoney Proposal: Multiple Trusted Names Used in Recent Phishing Attack

Posted by MailGuard on 24 November 2021 13:41:40 AEDT

Once again, an elaborate phishing scam is the weapon of choice for cybercriminals aiming to take advantage of the weakest link in the security landscape – human beings. A recent attack has taken inspiration from history by using ‘Project Zebra’, the name given to the top-secret mission between Stalin and Roosevelt (with the aim of flying a state-of-the-art amphibious warplane) as the subject of a malicious email impersonating an employee at international engineering, design and advisory firm ‘Aurecon’. The email currently intercepted by MailGuard uses a direct interaction phishing tactic designed to entice the victim into submitting a job proposal by creating a highly personalised email from an unsuspecting Aurecon employee. It is possible that these details have either been found publicly or from a leaked database.  

Read More

Fake 'Validate Your Account' Phishing Email Targets Outlook Users

Posted by MailGuard on 17 November 2021 13:09:54 AEDT

Microsoft Outlook users should take care when receiving an email asking them to ‘validate your account’ – this is a phishing attempt by cybercriminals to gain access to sensitive credentials, including your email login and password. With over 400 million Outlook customers using email as part of their daily tasks, it is highly likely that unsuspecting victims will fall prey to this phishing attempt, if not vigilant.  

Read More

Accounts Not Payable: Unpatched WordPress Site and DocuSign Fake Email

Posted by MailGuard on 12 August 2021 17:09:47 AEST

DocuSign seems to be winning the popularity contest amongst cybercriminals as MailGuard intercepts a second phishing scam imitating the global electronic agreement provider in just a matter of days. The scam emails appear to come from a compromised account belonging to a U.S. immigration law firm, as recipients are presented with an email purporting to be from the Accounts Department notifying the victim of an ‘EFT confirmation’ in .pdf format. Other trusted names such as Office 365, Gmail and AOL have been impersonated in the process.  

Read More

Healthcare Provider Compromised as Scammers Mimic DocuSign, Microsoft and Adobe

Posted by MailGuard on 10 August 2021 16:23:40 AEST

MailGuard has intercepted an email attack that uses multiple trusted brand names to fool victims into providing their sensitive information for credential harvesting. DocuSign, with hundreds of millions of users worldwide, is a household name with businesses and organizations using the tool for electronic signatures and agreements. Purporting to be from a prominent healthcare provider a DocuSign link is sent to recipients, in an attempt to capture email and login addresses and to potentially download malware. Other trusted names such as Adobe, Microsoft and IBM have been spoofed using accurately depicted branding and logos to catch victims off guard.  

Read More

Worth A Double-Take: False Email Quarantine Alerts from ‘Outlook’

Posted by MailGuard on 27 July 2021 14:54:10 AEST

This recent email attack threatens to steal user login credentials masquerading as trusted Microsoft email web app, Outlook. With over 400 million Outlook users globally, there is a good chance that you and your organisation are at risk of data theft.  

A fraudulent quarantine alert is the bait used for a recent email phishing scam currently being intercepted by MailGuard. Cybercriminals have used Outlook branding to trick unsuspecting recipients into entering their credentials (email username and password) for use in future criminal activity.  

The email arrives as an alert informing the victim of several emails whose delivery has been prevented due to system errors. After which, a link is provided to coerce the victim into reviewing the falsely quarantined emails. Recipients may be tricked into believing that the email is from the ‘Notifications Team’ however it appears to have come from a compromised Office 365 Account.  

Read More

Caution: OneDrive & Outlook File-Sharing Email Phishing Campaign

Posted by MailGuard on 09 July 2021 14:22:37 AEST

Email users take care, MailGuard is intercepting a fraudulent file sharing email scam that uses a Microsoft OneDrive template and links to two different phishing pages, one of which employs Outlook OWA branding, and the other has branding for the recipient company. The campaign is designed to harvest sensitive user credentials that can be used in subsequent attacks and/or sold on the dark web.

Read More

Think before you click: 'Tax refund' email supposedly from ATO leads to fake myGov-branded phishing page

Posted by Akankasha Dewan on 14 January 2021 19:21:43 AEDT

The Australian Taxation Office (ATO) is once again the subject of a phishing email scam.

Read More

Watch out: Purchase order email scam links to phishing page employing Adobe & Microsoft branding

Posted by Akankasha Dewan on 13 January 2021 16:58:01 AEDT

Enquiries or notifications related to purchase orders have long been used by cybercriminals to scam users - and looks like this trend is set to continue. 

Read More

Caution: Phishing email uses “progress claim” to lead users to fake Microsoft-branded login pages

Posted by Akankasha Dewan on 12 January 2021 18:18:44 AEDT

MailGuard has intercepted a phishing email masquerading as an alert about a “progress claim”.

Read More

Phishing email sent from compromised account invites users to ‘submit a proposal’

Posted by Akankasha Dewan on 11 January 2021 18:29:34 AEDT

Launching phishing attacks via compromised accounts continues to be a popular technique among cybercriminals looking to deceive users. 

Read More

Don’t Click: Phishing email sent supposedly from Outlook Web Application delivers “last warning” to validate accounts

Posted by Akankasha Dewan on 18 December 2020 08:25:50 AEDT

MailGuard has intercepted a phishing email masquerading as a security notification, sent supposedly from “Outlook Web Application”.

Read More

Email uses link to "payslip invoice" to deliver phishing attack

Posted by Akankasha Dewan on 19 October 2020 18:03:36 AEDT

Invoices can be very costly indeed – and not always in the traditional sense. A recent phishing invoice email scam detected by MailGuard is designed to trick victims into revealing their confidential data.

Read More

Phishing email sent from compromised Outlook account spoofs Dropbox and Adobe

Posted by Akankasha Dewan on 15 October 2020 16:32:40 AEDT

MailGuard has intercepted a phishing email scam spoofing two popular business applications - Dropbox, a file sharing and collaboration platform, and Adobe, a multi-media computer software company. 

Read More

Phishing email sent supposedly from “IT Support” introduces employees to new “Outlook Web App”

Posted by Akankasha Dewan on 08 April 2020 18:21:25 AEST

MailGuard has intercepted a new phishing email that masquerades as a notification informing employees about a new “Outlook Web App”.

Read More

    Something Powerful

    Tell The Reader More

    The headline and subheader tells us what you're offering, and the form header closes the deal. Over here you can explain why your offer is so great it's worth filling out a form for.


    • Bullets are great
    • For spelling out benefits and
    • Turning visitors into leads.

    Subscribe to email updates

    Recent Posts

    Posts by Topic

    see all