Aust Scammers Use Office 365, CBA Brands In Phishing Attacks
Australian-based cloud and e-mail security service MailGuard is warning that scammers have hijacked Microsoft’s Office 365 brand and the Commonwealth Bank’s logo to set up e-mail-based phishing scams.
The Office 365 scam uses an audio file to direct victims to a fake Microsoft Office 365-branded log-in page.
E-mail messages such as “Fetching your audio file …” and “You will be redirected in 5 seconds …” re-direct recipients to the fake Office 365 log-in page which has the target’s e-mail address pre-filled.
If a victim clicks on the account name, they are led to a phishing page which asks them to insert their password. And they’re hooked.
In a separate scam, apparently by the same outfit, MailGuard says a dodgy e-mail displays a Commonwealth Bank logo.
Founded in 2001 by Craig McDonald, Melbourne-based MailGuard now claims to be the world’s largest software-as-a-service security company with activities in 27 countries.