Did you know 9 out of 10 cyber-attacks are delivered by email?

itro > IT Security  > Did you know 9 out of 10 cyber-attacks are delivered by email?

Did you know 9 out of 10 cyber-attacks are delivered by email?

Email scams to look out for:

This week cyber-criminals are impersonating an Australian photography company (Corral), QuickBooks and Vodafone. Scammers commonly impersonate reputable and large brands, such as the above, as they have a large customer base.

Are you using itro Mail Scan?

  • Yes – emails with the potential to harm your business are blocked from reaching your inboxes
  • No – these emails can slip through the cracks and a staff member could click the malicious link. Malicious emails can compromise your entire network and cyber criminals can demand money

1. Corral Photography – Fake Invoice

Cybercriminals are impersonating an Australian photography company with a bogus invoice. Clicking ‘view invoice’ directs the victim to a file contain malware. This has the potential to infiltrate your entire system and your data will be in the hands of cybercriminals.

Corral Photography – Fake InvoiceSource: MailGuard 2017

2. QuickBooks – Email Scam

Well-designed, the scammer is hoping to exploit the well known-brand and for the recipient to not check the email address it is coming from.

Below is the email:

QuickBooks – Email ScamSource: MailGuard 2017

3. QuickBooks – Fake Invoice

Major Australian telco companies, including Vodafone, Bigpond and Telstra, are being brandjacked in a simple email scam. Scammers have used compromised email accounts with legitimate telco domains in an attempt to give the email credibility. They have kept the design simple, adding no logos or signatures to the email – possibly hoping the email address is enough to trick people.

QuickBooks – Fake Invoice

Source: MailGuard 2017

This email scam is coming from the below email address:

If you receive an email from any of the above email accounts, do not open it.

Tips on how to spot an email as illegitimate:

  • Non-personalisation or incorrect personal details
  • Suspicious or hidden email address, therefore, always check domain addresses because Netflix will only ever send an email from a domain of @Netflix.com
  • Misleading hyperlinks. Before clicking any links, hover over it and check the domain it is linking you to and if they look suspicious do not click them and instead refer to the companies website
  • Incorrect domain name, legitimate emails from Bingle have the domain @bingle.com.au
  • Outdated logos and incorrect brand imaging
No Comments

Sorry, the comment form is closed at this time.