Application security, Malware, Phishing

Phishing scam hitting EnergyAustralia customers


Mailguard is reporting that a large number of malicious emails posing as a bill from EnergyAustralia is swarming across that nation.

The email is an exact replica of a real EnergyAustralia bill, MailGuard told SC Media, with the message noting the bill is due in just a few days. However, the sender is not looking for money, but attempts to trick the recipient into downloading a malware-laden Zip file that contains malicious JavaScript. The sending email address domain was just created and registered in China on June 18 with spam distribution beginning on the morning of June 19.

The attackers were clever enough to make sure each email is unique, with a different about of money owed and different due date. This level of randomization helps defeat antivirus software, MailGuard said.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.