Please be vigilant in protecting your computer, do not click on any link or download any attachment from someone you don't know. If you receive any suspicious emails, please report these to us.
Below are some Government sites that you may wish to visit that will give you more information on current cyber security trends:
Computer Emergency Response Team (CERTNZ)
New Zealand National Cyber Security Centre (NCSC)
Australian Cyber Security Centre (ACSC)
For guidance on how to report suspected spam emails etc., visit our FAQ page by clicking on the Support & FAQs tab above.
Netflix Phishing Emails
We are seeing a number of Netflix phishing emails like below. Please do not click on any links and please delete the email.
Last updated 15/06/2018 11:35
Scammers costing duped Kiwis up to $500m a year
Below is an article of interest which outlines the impact of scams and the financial loss this can cause.
Last updated 11/06/2018 11:31
Kiwibank Phishing emails
We are seeing a number of phishing emails like below targeting Kiwibank customers. Please do not click on any links and please delete the email.
Last updated 25/05/2018 11:22
ASB Bank Phishing emails
Emails like the one shown below are doing the rounds. If you receive an email like this, refrain from clicking any links and delete the email.
Last updated 22/05/2018 11:57
Kiwibank Phishing emails
We've seen a number of variants of Kiwibank phishing emails as below. If you receive emails like these please delete and do not click on any links.
Last updated 21/05/2018 08:24
ASB Bank phishing email
Emails like below are circulating at present which has a link in, that goes to a very realistic looking login page for ASB. If you receive an email like this please delete and do not click on any links.
Last updated 17/05/2018 15:08
Spark Webmail Phishing email
Emails like below are circulating at present which is very similar to the genuine Spark password reset page. If you receive an email like this please delete and do not click on any links.
Last updated 16/05/2018 16:16
BNZ Phishing Email
BNZ Phishing emails are doing the rounds again, please don't reply or click on links in these types of emails.
Last updated 07/05/2018 17:26
Drastic Rise in Online Scams
So far this year, 394 Kiwis have reported to have lost money through online scams. The New Zealand Herald has reported about the spike in such scams based on information gathered from Netsafe.
Link to the full report : https://www.nzherald.co.nz/business/news/article.cfm?c_id=3&objectid=12040880
Last updated 01/05/2018 17:23
BNZ phishing emails
We are seeing a number of phishing emails that are masquarading as BNZ emails that says your transaction has been approved.Do not reply to those.
Last updated 27/04/18 11:56
Westpac phishing emails
We are seeing a number of phishing emails that are masquarading as westpac emails that says your account has been suspended.
Last updated 26/04/18 14:58
HR scam emails
We are seeing a number of scam emails like below which are encouraging HR teams to hire Indian workers. Do not reply to these.
Last updated 23/04/18 10:42
Air New Zealand Phishing Email
A detailed Air New Zealand based Phishing email has been doing the rounds. It proposes payment for completing a survey. Please take extra care while clicking or replying to emails with similar contents as shown below:
Last updated 23/04/18 08:54
New study shows email security systems not up to scratch as malicious emails pour in.
Below is an article which outlines the importance of keeping your systems up to date to prevent phishing and malware attacks.
You may wish to add extra SMX features such SmartRules to help keep your security up to scratch, for more information please contact us.
Last updated 19/04/18 16:17
Google Phishing emails
We are seeing emails similar to this below please take care and do not reply or click on any links.
Last updated 26/03/18 13:03
Gmail spam emails
This afternoon we are seeing a number of random Gmail spam emails, some have blank subject and content. Please take caution when opening emails from unknown senders.
Last updated 23/03/18 15:49
Westpac Phishing Emails
A Westpac phishing email is currently being sent out to New Zealanders at present. Do not click on any links contained within the body of the email. If you see any new variants of this email please send it through to us as an attachment to email@example.com.
See an example of the phishing email below.
Last updated 23/03/18 08:55
RealMe phishing emails
A RealMe phishing email, that is seeking to gather personal information is being targeted to New Zealanders at present. There is an article on this development on the CertNZ website which gives more detail, click here to read more about this.
Last updated 08/03/18 08:44
Xtra Phishing scam
There is a new phishing email that is going around pretending to be from Xtra. This email has a link that goes to a website that looks exactly like the Xtra webmail login page. Below are screenshots of the email itself and the website.
Last updated 01/03/18 13:55
The WannaMine is the latest ransomeware that is making the rounds, you can read more about this threat in the link below.
Last updated 08/02/18 16:35
We are seeing a number of different emails that pretend to come from Kiwibank, please be vigilant
Last updated 01/02/18 16:44
Money spam emails
Malicious emails with the subject line "Re:Money for New Zealand" has been doing the rounds of late. Please be aware of similar emails.
Last updated 23/01/18 11:37
Netflix Phishing Campaigns
Click on the following link to read about Netflix phishing emails and how to spot them. This can also apply to other phishing emails that you come across.
Last updated 19/01/18 15:05
BNZ phishing emails
We are seeing a number of BNZ emails like below which are circulating, please be careful if you receive an email like this below.
Last updated 10/01/18 11:12
Netflix phishing emails
Please be aware of Netflix phishing emails that are circulating.
Last updated 24/11/17 9:24
BNZ phishing emails
Please be aware of BNZ emails like below which are circulating.
Last updated 10/11/17 9:58
Kiwibank phishing emails
Please be aware of Kiwibank emails like the below, which are circulating.
Last updated 06/11/2017 11:16
Bad Rabbit Ransomware
There is a new variant of Ransomware which has recently started spreading. Further details on this can be found at:
CERT NZ has information on this outbreak here
We have confirmed with our vendors that this is being detected by them, however please keep an eye out for this in case there are new variants.
Last updated 26/10/2017 9:15
New ANZ phishing emails
We are seeing emails like the below, where the link appears to point to anz.co.nz but in fact points to another URL. Please be aware of these emails.
Last updated 25/10/2017 10:42
ANZ phishing emails
Please be aware of the ANZ phishing emails which are circulating at the moment. Please see the sample email below:
Last updated 25/09/2017 13:33
Please read the following article on the NZ Herald website about a recent spambot dump, you can check if you have been compromised here: https://haveibeenpwned.com/ and if you have, we would highly recommend you to update your password.
An IRD Scam email is doing the rounds. Please do not open the email and do not download or open the attachment contained in the email.
Last updated 25/08/2017 17:50
Microsoft Phishing Email
We have seen a number of new variants of the below email that was sent out initially a few weeks ago. See the sample emails below wherein there may be slight changes to the format, sender, and content including links contained in the mail.
Last updated 28/08/2017 11:00
Last updated 1/08/2017 09:52
Westpac Phishing Email
There have been phishing emails sent out with the subject of 'Account Reward Statement', most likely coming from compromised accounts. This is now being blocked but for reference, below is an example of what this email looks like:
...And here is an example of the attachment contained in the phishing email. Notice the incorrect spelling throughout.
Last updated 27/07/2017 17:29
Xero Phishing Email
There have been phishing emails sent out with the Subject of 'Your Xero invoice available now', most likely coming from compromised accounts. This is now being blocked. For reference, below is an example of what the email looks like:
Last updated 27/07/2017 16:48
On Tuesday 27 June 2017, the Petya ransomware was detected, infecting machines by encrypting files and spreading rapidly across the globe.
Our vendors are already aware of it and detection had been put in place. The first issued protection was released on 27 June at 13:50 UTC and have provided several updates since then to provide further protection against possible future variants. According to our vendors, it is not yet clear how computers became infected with this ransomware for the time being, but it doesn’t seem to be through email as happened with WannaCry.
Please ensure that systems are installed with the latest updates and have a regular backup routine.
Last updated 28/06/2017 09:05
On Wednesday 28 June 2017, there have been phishing emails sent out with the Subject of 'Re: invoice 34602786 problem', most likely coming from compromised accounts. This is now being blocked. Below is an example of what this email looks like:
Last updated 28/06/2017 11:00
One of the most recent fraudulent schemes in the past couple of months is where business owners are being duped by scammers into sending them goods, or providing services and then not being paid. The scammers then make off with money/goods that have been provided. You can read more about this in this New Zealand Herald article - there are some tips on how to detect and guard against fraud.
Last updated 16/05/2017 18:00
WannaCry Ransomware used in large scale international attacks
On 13 May 2017 there was a large scale Ransomware outbreak, which leverages publicly known vulnerabilities in Microsoft Windows, patched by Microsoft in March this year (Microsoft Security Bulletin MS17-010). Additionally, Microsoft has released patches for older, unsupported Microsoft operating systems on 13 May 2017.
For more information please read the advisories:
Last updated 15/05/2017 10:30
We have been advised of new threats coming in the form of LNK file (Microsoft Shell Link Binary File Format), which contains information that can be used to access another data object. It is commonly known as “shortcuts”, which users use as a quick way of opening popular apps or often-used files.
SMX recommend Windows users to set up their computers to show file extensions. An extension is an integral part of the filename, and affects how Windows treats the file. Suppressing extensions may look a bit neater, but it needlessly hides information that might otherwise give users early warning of a security trick.
For SMX SmartRules customers who use the SMX-maintained System Rules, please note that the LNK file type has been added to the Executable File detection list.
We are getting reports about the latest virus outbreak overnight and this morning with emails containing a Macro-enabled Word file (.docm) impersonating the recipient address as the sender. Please be aware when opening up any attachments. Eg:
Subject: Documents from work
If you are an SMX SmartRules customer utilising our 'block executable attachments' rule, we'd like to inform you of a change we made yesterday, Tuesday 19 July 2016, affecting this rule.
Over the previous few days, SMX has noticed an elevated level of false negative malware submissions from customers that had received an email containing a macro-enabled Microsoft (MS) Word document with the filename extension .docm (DOT DOCM).
As a result of the increased level of submissions, SMX has updated the system list that your 'block executable attachments' SmartRule refers to. This means that effective from midday yesterday SMX will reject emails that contain a .docm attachment. For most customers this shouldn't be a problem, however if you do have a need to receive these file types the SMX support team can add an exception to this rule on your behalf.
If you are interested in the current spam trends in New Zealand, please visit the DIA link below.