Suspicious Emails Alert! The email threat landscape is constantly changing and new threats and scams emerge constantly. SMX will keep you up-to-date on suspicious email security threats, alerts, news and trends on this page, so that you know what to look out for. 

Please be vigilant in protecting your computer, do not click on any link or download any attachment from someone you don't know. If you receive any suspicious emails, please report these to us.

Below are some Government sites that you may wish to visit that will give you more information on current cyber security trends:

  • Computer Emergency Response Team (CERTNZ)

  • New Zealand National Cyber Security Centre (NCSC)

  • Australian Cyber Security Centre (ACSC)

For guidance on how to report suspected spam emails etc., visit our FAQ page by clicking on the Support & FAQs tab above.


Microsoft Phishing Emails

There are a number of variants of Microsoft Outlook phishing emails doing the rounds. Although the emails look the same to the naked eye, the emails are of different variants. Please see below examples.

Last updated 17/09/2018 11.22


 

 Office 365 Phishing Email

There are a few variants of Office 365 phishing emails doing the rounds. Be extra vigilant with your passwords - don't just enter it in a link you receive via email. Remember, if in doubt, don't.

Last updated 14/09/2018 14:42


Invoice Scams Affecting New Zealand Businesses

See the latest article from CERT NZ, regarding a spike of invoice scams being reported to CERT NZ recently.

In these scams, the scammers gain access to a business’ email account and advise customers of a change in bank account details. Because it comes from the business’ email account and tend to be for expected payments, the scammers are often successful.

Once the change is discovered, the money has often been transferred overseas and is hard to recover.

Further details of the scam on the CERT NZ website

Last updated 31/08/2018 14:04


Westpac Phishing Email

Banks will never ask their customers via email to manage their accounts. If you look at the sample below, there are extra characters in the From field as well as the To field. Bank emails should be addressed to you not to themselves but ALWAYS call your bank using the phone number in your bank cards -- not the one in an email as it may have been setup for the phishing/scam email.

Westpac

Last updated 28/08/2018 15:52


BNZ Phishing Email

We have received reports of emails like the one shown below. If you are receiving similar emails, take extra care when you are clicking on any links in the email.

spam trend

Last updated 14/08/2018 16:02


 Microsoft Phishing email

We have received reports of emails like the one below. Should you see similar emails in your inbox please do not click on the link.

Microsoft

Last updated 13/08/2018 18:05


Webcam and Password Blackmail Scam

Recently we have seen a number of webcam and password blackmail scam emails circulating. Please do not reply to these emails. Please read the advisory from CERT NZ on these emails here

blackmail3Last updated 23/07/2018 12:10


Wetransfer Spam Emails

We have received reports of emails like the one below. Should you see similar emails in your inbox but are not expecting to receive any files from anyone, do not click on the link and delete the email immediately.

12

Last updated 17/07/2018 17:55


 Netflix Phishing Emails

We are seeing a number of Netflix phishing emails like below. Please do not click on any links and please delete the email.

Screenshot at 2018 06 15 112835

 Last updated 15/06/2018 11:35


Scammers costing duped Kiwis up to $500m a year

Below is an article of interest which outlines the impact of scams and the financial loss this can cause.

https://www.nzherald.co.nz/business/news/article.cfm?c_id=3&objectid=12066850

Last updated 11/06/2018 11:31


Kiwibank Phishing emails

We are seeing a number of phishing emails like below targeting Kiwibank customers. Please do not click on any links and please delete the email.

KB

Last updated 25/05/2018 11:22


ASB Bank Phishing emails

Emails like the one shown below are doing the rounds. If you receive an email like this, refrain from clicking any links and delete the email.

asb1

 

asb5

Last updated 22/05/2018 11:57


Kiwibank Phishing emails

We've seen a number of variants of Kiwibank phishing emails as below. If you receive emails like these please delete and do not click on any links.

Kiwibank 2

Kiwibank 3Kiwibank

 

 Last updated 21/05/2018 08:24


ASB Bank phishing email

Emails like below are circulating at present which has a link in, that goes to a very realistic looking login page for ASB. If you receive an email like this please delete and do not click on any links.

Selection 032

 Last updated 17/05/2018 15:08


Spark Webmail Phishing email

Emails like below are circulating at present which is very similar to the genuine Spark password reset page. If you receive an email like this please delete and do not click on any links.

webmailphish

Last updated 16/05/2018 16:16


BNZ Phishing Email

BNZ Phishing emails are doing the rounds again, please don't reply or click on links in these types of emails.

BNZ2

Last updated 07/05/2018 17:26


Drastic Rise in Online Scams

So far this year, 394 Kiwis have reported to have lost money through online scams. The New Zealand Herald has reported about the spike in such scams based on information gathered from Netsafe.

nzherald

Link to the full report : https://www.nzherald.co.nz/business/news/article.cfm?c_id=3&objectid=12040880

Last updated 01/05/2018 17:23


BNZ phishing emails

We are seeing a number of phishing emails that are masquarading as BNZ emails that says your transaction has been approved.Do not reply to those.

bnz scam

Last updated 27/04/18  11:56


Westpac phishing emails

We are seeing a number of phishing emails that are masquarading as westpac emails that says your account has been suspended.

westpac phishing5

Last updated 26/04/18  14:58


HR scam emails

We are seeing a number of scam emails like below which are encouraging HR teams to hire Indian workers. Do not reply to these.

Indianworkers3

Last updated 23/04/18  10:42


Air New Zealand Phishing Email

A detailed Air New Zealand based Phishing email has been doing the rounds. It proposes payment for completing a survey. Please take extra care while clicking or replying to  emails with similar contents as shown below:

airnzairnz1airnz2

Last updated 23/04/18  08:54


New study shows email security systems not up to scratch as malicious emails pour in.

Below is an article which outlines the importance of keeping your systems up to date to prevent phishing and malware attacks.

https://securitybrief.co.nz/story/new-study-shows-email-security-systems-not-scratch-malicious-emails-pour/

You may wish to add extra SMX features such SmartRules to help keep your security up to scratch, for more information please contact us.

Last updated 19/04/18  16:17


Google Phishing emails

We are seeing emails similar to this below please take care and do not reply or click on any links.

Googlespam

Last updated 26/03/18  13:03


Gmail spam emails

This afternoon we are seeing a number of random Gmail spam emails, some have blank subject and content. Please take caution when opening emails from unknown senders.

Last updated 23/03/18 15:49


Westpac Phishing Emails

A Westpac phishing email is currently being sent out to New Zealanders at present. Do not click on any links contained within the body of the email. If you see any new variants of this email please send it through to us as an attachment to emailsupport@smxemail.com.

See an example of the phishing email below.

Last updated 23/03/18 08:55


RealMe phishing emails

A RealMe phishing email, that is seeking to gather personal information is being targeted to New Zealanders at present. There is an article on this development on the CertNZ website which gives more detail, click here to read more about this.

Last updated 08/03/18 08:44


Xtra Phishing scam

There is a new phishing email that is going around pretending to be from Xtra. This email has a link that goes to a website that looks exactly like the Xtra webmail login page. Below are screenshots of the email itself and the website.

 

xtra compromised

 

XtraPhish

 

Last updated 01/03/18 13:55


WannaMine ransomware

The WannaMine is the latest ransomeware that is making the rounds, you can read more about this threat in the link below.

https://nakedsecurity.sophos.com/2018/01/31/what-are-wannamine-attacks-and-how-do-i-avoid-them/

Last updated 08/02/18 16:35


Kiwibank spam

We are seeing a number of different emails that pretend to come from Kiwibank, please be vigilant

Screenshot from 2018 02 01 16 42 40

Last updated 01/02/18 16:44


Money spam emails

Malicious emails with the subject line "Re:Money for New Zealand" has been doing the rounds of late. Please be aware of similar emails.

 spamtrends

Last updated 23/01/18 11:37


Netflix Phishing Campaigns

Click on the following link to read about Netflix phishing emails and how to spot them. This can also apply to other phishing emails that you come across.

https://nakedsecurity.sophos.com/2018/01/15/netflix-phishing-campaign-goes-after-your-login-credit-card-mugshot-and-id/

Last updated 19/01/18 15:05


BNZ phishing emails

We are seeing a number of BNZ emails like below which are circulating, please be careful if you receive an email like this below.

bnz

Last updated 10/01/18 11:12


Netflix phishing emails

Please be aware of Netflix phishing emails that are circulating.

smx alert Netflix phishing email new 600

Last updated 24/11/17 9:24


BNZ phishing emails

Please be aware of BNZ emails like below which are circulating.

smx alert BNZ phishing email new 600

Last updated 10/11/17 9:58


Kiwibank phishing emails

Please be aware of Kiwibank emails like the below, which are circulating.

smx alert kiwibank phishing email 600a

Last updated 06/11/2017 11:16


Bad Rabbit Ransomware

There is a new variant of Ransomware which has recently started spreading. Further details on this can be found at:

http://www.bbc.com/news/technology-41740768

CERT NZ has information on this outbreak here

We have confirmed with our vendors that this is being detected by them, however please keep an eye out for this in case there are new variants.

Last updated 26/10/2017 9:15


New ANZ phishing emails

We are seeing emails like the below, where the link appears to point to anz.co.nz but in fact points to another URL. Please be aware of these emails.

smx alert asb with anz link phishing email 600

Last updated 25/10/2017 10:42


ANZ phishing emails

Please be aware of the ANZ phishing emails which are circulating at the moment. Please see the sample email below:

smx alert anz phishing email 0917 1 600

Last updated 25/09/2017 13:33


Compromised emails

Please read the following article on the NZ Herald website about a recent spambot dump, you can check if you have been compromised here: https://haveibeenpwned.com/ and if you have, we would highly recommend you to update your password.


IRD Scam Email

An IRD Scam email is doing the rounds. Please do not open the email and do not download or open the attachment contained in the email.

smx alert ird scam email 250817 1 600a

Last updated 25/08/2017 17:50


 

SmxEmail2018