New ATO phishing scam surfaces

By on
New ATO phishing scam surfaces

Phishing campaigns have surfaced that are targeting the Australian Tax Office, and customers of NAB and the Commonwealth bank with malware undetected by most anti-virus engines.

The ATO trojan delivered to users at at time many were receiving tax returns was detected by 14 of 47 anti-virus engines, according to a Virus Total analysis.

It contained a spoofed email address linked to payroll provider ADP and appeared to use body text not used in other phishing scams to con users into opening the ATO_TAX_16072013.zip malicious Microsoft Word attachment .

Only four of 47 anti-virus engines detected the malware.

It contained the subject "Australian Taxation Office - Refund Notification" with body text that read "after the last calculation of your fiscal activity we have determined that you are eligible to receive a refund of 6731.76 AUD."

The banking phishing attacks delivered a trojan packed into the attachment SecureMessage.zip.

The email text and attachment file name have been used in attacks against banks dating to at least December last year.

Hat tip to Telstra chief security specialist Scott Mcintyre who discovered and reported the malware.

Got a news tip for our journalists? Share it with us anonymously here.

Copyright © SC Magazine, Australia

Tags:

Most Read Articles

You must be a registered member of CRN to post a comment.
| Register

Poll

The channel is a juicy hacking target - are you improving security?
YES - recent attacks on MSPs spurred us to action
YES - we're ALWAYS improving our security stance
YES - we've noticed new forms of attack
NO - we're confident our past efforts are enough, but are always vigilant
NO - we don't see the need for change at this time
View poll archive

Log In

Username / Email:
Password:
  |  Forgot your password?