Telstra, MYOB and Xero brandjacked, watch out for these phishing emails
Email scams to look out for:
Cyber-criminals are impersonating MYOB, Xero and Telstra. Scammers commonly impersonate reputable and large brands, such as the above, as they have a large customer base.
Are you using itro Mail Scan?
- Yes – emails with the potential to harm your business are blocked from reaching your inboxes
- No – these emails can slip through the cracks and a staff member could click the malicious link. Malicious emails can compromise your entire network and cyber criminals can demand money
1. MYOB – Fake Invoice
A new fraud email has been blocked by itro Mail Scan, powered by MailGuard, this week. The email has been designed poorly but by exploiting MYOB’s brand name, it is likely to still persuade some people.
Two emails are circulating claiming to be from Telstra. Unlike the above scam, these emails are well-designed with a very similar format to actual Telstra invoices. See below:
Clicking a link then takes you to the below page:
Once filled in, cybercriminals have access to the victims credit card and address details.
3. Xero invoice scam
The online accounting platform is being brandjacked in a new phishing attack. See below:
If you receive an email from any of the above email accounts, do not open it.
Tips on how to spot an email as illegitimate:
- Non-personalisation or incorrect personal details
- Suspicious or hidden email address, therefore, always check domain addresses because Netflix will only ever send an email from a domain of @Netflix.com
- Misleading hyperlinks. Before clicking any links, hover over it and check the domain it is linking you to and if they look suspicious do not click them and instead refer to the companies website
- Incorrect domain name, legitimate emails from Bingle have the domain @bingle.com.au
- Outdated logos and incorrect brand imaging