Can You Spot A Phishing Email?

itro > IT Security  > Can You Spot A Phishing Email?

Can You Spot A Phishing Email?

Scammers impersonating American Express, QuickBooks and NAB.

Scammers target brands, such as the above, are they are reputable and have a large customer base. It’s likely most readers are using or have used in the past one of the above services.

Are you using a Mail Filtering Solution? Such as itro Mail Scan

  • Yes – great, any emails with the potential to harm your business are blocked from reaching inboxes
  • No you are not protected, malicious emails are entering your inbox. Staff may unknowingly click a malicious link allowing a cyber criminal access to your network. Once cyber criminals have access to your network they will generally hold your data at ransom demanding large amounts of money
  • Unsure – if you receive constant spam or unwarranted emails, it’s likely you do not have a Mail Filter solution

1. American Express – Fake Invitation Request

Below is a phony email claiming to be from American Express, asking you to check your new statement. However, if you click the link it re-directs you to a phony page asking for login details. Once you enter your credentials, the scammers now have your details.

American Express – Fake Invitation Request

2. NAB – Credit Card Fraud

NAB has been exploited by scammers trying to steal victims credit card details. The emails subject line is quite ironic, “Protection against fraud !”

NAB – Credit Card Fraud

Clicking any of the above links take you to the below phony NAB login in page:

Once the end-user enters their NAB ID and password they are re-directed to the below page. The scammer is trying to collect as much personal information as possible. Their end goal is to log into the actual NAB website pretending to be you.

NAB has issued the following on their website “if you have received a suspicious email or text message and have responded to it, please call 13 22 65 or contact your local branch immediately.”

3. QuickBooks – Fake Invoice

Lastly, an email circulating this week is claiming to be from QuickBooks with a phony invoice of $1,600. Clicking the link directs the receiver to a malicious website. Tips to spot this email as illegitimate: wrong display name, incorrect branding and it’s not addressing you.

QuickBooks – Fake Invoice

Tips on how to spot an email as illegitimate:

  • Non-personalisation or incorrect personal details
  • Suspicious or hidden email address, therefore, always check domain addresses because Netflix will only ever send an email from a domain of @Netflix.com
  • Misleading hyperlinks. Before clicking any links, hover over it and check the domain it is linking you to and if they look suspicious do not click them and instead refer to the companies website
  • Incorrect domain name, legitimate emails from Bingle have the domain @bingle.com.au
  • Outdated logos and incorrect brand imaging
No Comments

Sorry, the comment form is closed at this time.