As per the campaign of the MailGuard, is “one of the most sophisticated phishing attacks” the company has witnessed it very recently.
Whilst the scam email isn’t an exact replica or the copy of a Telstra email bill, the overall style is though very akin and very close.
The first indications are shown of the scam that the subject line does not contain the recipient’s Telstra account number, and the salutation is a generic “Dear customer” rather than “Dear <name>”.
As per the general rule, if an organization knows your name, you should expect to be addressed or call by your name.
Instead of present-ting the summary information about the bill like a genuine Telstra bill notification, the scam email asserts that “Our billing system was unable to process your last payment” and asks the recipient to click via their own Telstra account and pay online.
Of course, the link goes to a phishing site somewhat than what the real Telstra site looks like. The scammers have tried to mask this and to cover this by using a URL that which begins with “www.my-telstra-com-au” – the real site uses the domain “www.my.telstra.com.au“.
The phishing site attempt and challenge and try to collect the victim’s Telstra account credentials, and then their credit card details – which include, the credit limit on that account, which is used by some banks as a “secret question” to verify that the person making an online transaction is the actual and the real account holder.
You should only ever enter that information if you are completely sure you’re on a page and is all set to operate by your own bank.
Other information requested includes the billing address (knowing that makes it easier for scammers to charge orders to a victim’s card while having the goods delivered to the address of their choice) and three pieces of information that will be make it easy to pose as the victim: date of birth, driver’s licence number, and mother’s maiden name.
As MailGuard said after pointed out, “In our busy lives, we are often hasty in reacting to emails and criminals take advantage of that.” So be on the lookout for this and other scams.
As per the campaign of the MailGuard, is “one of the most sophisticated phishing attacks” the company has witnessed it very recently.
Whilst the scam email isn’t an exact replica or the copy of a Telstra email bill, the overall style is though very akin and very close.
The first indications are shown of the scam that the subject line does not contain the recipient’s Telstra account number, and the salutation is a generic “Dear customer” rather than “Dear <name>”.
As per the general rule, if an organization knows your name, you should expect to be addressed or call by your name.
Instead of present-ting the summary information about the bill like a genuine Telstra bill notification, the scam email asserts that “Our billing system was unable to process your last payment” and asks the recipient to click via their own Telstra account and pay online.
Of course, the link goes to a phishing site somewhat than what the real Telstra site looks like. The scammers have tried to mask this and to cover this by using a URL that which begins with “www.my-telstra-com-au” – the real site uses the domain “www.my.telstra.com.au“.
The phishing site attempt and challenge and try to collect the victim’s Telstra account credentials, and then their credit card details – which include, the credit limit on that account, which is used by some banks as a “secret question” to verify that the person making an online transaction is the actual and the real account holder.
You should only ever enter that information if you are completely sure you’re on a page and is all set to operate by your own bank.
Other information requested includes the billing address (knowing that makes it easier for scammers to charge orders to a victim’s card while having the goods delivered to the address of their choice) and three pieces of information that will be make it easy to pose as the victim: date of birth, driver’s licence number, and mother’s maiden name.
As MailGuard said after pointed out, “In our busy lives, we are often hasty in reacting to emails and criminals take advantage of that.” So be on the lookout for this and other scams.
Leave a Reply