Phishing campaigns have been discovered targeting the Australian Tax Office with malware undetected by most anti-virus engines.
The ATO trojan delivered to users, at at time when many were receiving tax returns, was detected by 14 of 47 anti-virus engines, according to a Virus Total analysis.
It contained a spoofed email address linked to payroll provider ADP and appeared to use body text not used in other phishing scams to con users into opening the ATO_TAX_16072013.zip malicious Microsoft Word attachment .
Only four of 47 anti-virus engines detected the malware, which was discovered by Telstra chief security specialist Scott Mcintyre.
It contained the subject "Australian Taxation Office - Refund Notification" with body text that read "after the last calculation of your fiscal activity we have determined that you are eligible to receive a refund of 6731.76 AUD."
The banking phishing attacks delivered a trojan packed into the attachment SecureMessage.zip.
The email text and attachment file name have been used in attacks against banks dating to at least December last year.
_(37).jpg&h=140&w=231&c=1&s=0)
_(36).jpg&h=140&w=231&c=1&s=0)
Cyber Resilience Summit
iTnews Executive Retreat - Security Leaders Edition
Huntress + Eftsure Virtual Event -Fighting A New Frontier of Cyber-Fraud: How Leaders Can Work Together
iTnews Cloud Covered Breakfast Summit
Live & Hands On Demo: Navigating the BMC AMI DevX Platform to Understand Code Faster Using AI
.jpg&h=271&w=480&c=1&s=1)
_(1).jpg&h=140&w=231&c=1&s=0)
