Story image

Microsoft Dynamics brandjacked in latest wave of email scams

19 Feb 2018

Microsoft Dynamics is one of the latest applications to have its branding mimicked through phishing attacks that collect Microsoft login credentials.

A blog by Emmanuel Marshall from email security firm MailGuard details the zero-day phishing attack, which is designed to look like a Microsoft Dynamics NAV notification invoice.

The email asks users to ‘View Dynamics NAV Document’. When users click on the link, they are taken to a phony Microsoft login page that looks like the genuine site.

MailGuard says that while the sender’s display name is apparently shown as Microsoft Dynamic365, the sender’s email address is microsoft@mylocustpoint.org. This is a giveaway that the email is not legitimate.

MyLocustPoint appears to belong to a non-profit organisation in Maryland, United States.

This cyber-attack is a classic example of brandjacking - a scam format that illegally exploits the logos and trademarks of major corporations to deceive victims and persuade them to click on harmful links,” MailGuard states.

“Being such a well-known and trusted company, Microsoft is an ideal brandjacking target. If you see this message arrive in your inbox, please be sure to delete it immediately.”

Microsoft is not the only company that has been brandjacked this year.

MailGuard has detected phishing emails from Xero, Quickbooks, Westpac, MYOB, St George Bank and Click Energy, to name a few.

The Westpac scam, spotted last week, is designed to mimic an account confirmation email for a security update. The email appears to be from west-pac@westpac.com however it links back to ‘westpac.co.kr’, a phoney domain that hosts a phoney website.

The phoney website asks users for credit card numbers, expiry dates, security codes and drivers licence numbers in order to commit identity fraud further down the line.

“Remember, Westpac will never ask you to update, verify or correct any Online Banking details directly into an email reply,” Westpac says on its website.

Users should also report scams that appear to be from Westpac to the genuine organisation by forwarding emails to hoax@westpac.com.au.

Today MailGuard announced that cloud provider Dilignet joined MailGuard’s Partner Community.

 “I look forward to working closely with Dilginet CEO Peter Lillywhite and his team to deliver even more secure cloud environments for their business customers,” comments MailGuard’s recently-appointed global director of sales and channel, Colin Garro.

 “We are excited to be working with the industry’s leading web & email security provider. This relationship allows us to work more closely with our customers and provide them with a richer service,” adds Dilignet CEO Peter Lillywhite.

Dilignet is a consulting and managed services company based in Melbourne.

WhatsApp users warned to change voicemail PINs
Attackers are allegedly gaining access to users’ WhatsApp accounts by using the default voicemail PIN to access voice authentication codes.
Swiss Post asks public to hack its e-voting system
Switzerland’s postal service Swiss Post is inviting keen-eyed security experts and white hats to hack its e-voting system.
Spoofs, forgeries, and impersonations plague inboxes
It pays to double check any email that lands in your inbox, because phishing attacks are so advanced that they can now literally originate from a genuine sender’s account – but those emails are far from genuine.
Flashpoint signs on emt Distribution as APAC partner
"Key use cases that we see greatly benefiting the region are bolstering cybersecurity, combating insider threats, confronting fraud, and addressing supply chain risk, to name a few."
The attack surface: 2019's biggest security threat
As businesses expand, so does their attack surface – and that may be the biggest cybersecurity risk of them all, according to Aon’s 2019 Cyber Security Risk Report.
Opinion: Cybersecurity as a service answer to urgent change
Alan Calder believes a CSaaS model can enable a company to build a cyber resilience strategy in a coherent and consistent manner.
Why SD-WAN is key for expanding businesses - SonicWall
One cost every organisation cannot compromise on is reliable and quick internet connection.
New threat rears its head in new malware report
Check Point’s researchers view Speakup as a significant threat, as it can be used to download and spread any malware.