Australia markets closed

    +50.40 (+0.71%)

    +0.0083 (+1.08%)
  • ASX 200

    +48.20 (+0.71%)
  • OIL

    +0.04 (+0.08%)
  • GOLD

    +4.60 (+0.25%)

    -839.50 (-1.88%)
  • CMC Crypto 200

    -23.89 (-3.41%)

‘Don’t click’: New Outlook scam stealing Aussies’ bank details

Anastasia Santoreneos
·2-min read
‘Don’t click’: New Outlook scam stealing Aussies’ bank details. Source: Getty/MailGuard
‘Don’t click’: New Outlook scam stealing Aussies’ bank details. Source: Getty/MailGuard

Australians are urged to be vigilant against email scams, after another malicious Outlook email was intercepted by cybersecurity firm MailGuard.

According to the MailGuard blog, a phishing email claiming to be a security notification from “Outlook Web Application” was intercepted, with recipients who click on the email are led to a page that attempts to harvest their credentials.

The email is titled “Last Warning For Validation Now”, and provides a link for users to validate their accounts. It is signed off, “ The Outlook Web Application Team”.

Users who click the link are prompted to put in their email address and password.

“This is a phishing page hosted on an external file storage system.” the MailGuard blog stated.

“Once users ‘sign in’, the attacker harvests their credentials for later use, and users are redirected to the website associated with their domain.”

The cybercriminals employ a number of tactics to trick recipients into falling for the scam, like using a trusted company and inciting a sense of urgency.

But don’t click, the cybersecurity firm warns.

“We strongly advise all recipients to delete these emails immediately without clicking on any links,” it stated.

“Please share this alert with your social media network to help us spread the word around this email scam.”

How do I protect myself against email scams?

There are a few things you can do to ensure you protect yourself against phishing scams, MailGuard stated. Do not emails:

  1. That aren’t addressed to you by name;

  2. That appear to be from a legitimate company, but use poor English;

  3. That are from businesses you weren’t expecting to hear from; pr

  4. That take you to a landing page or website that does not have the legitimate URL for the company the email is purporting to be from.

Want to hear Australian influencers reveal their best finance tips? Join the Broke Millennials Club on Facebook, and receive one hot tip per day in December.

And if you want 2021 to be your best (financial) year yet, follow Yahoo Finance on Facebook, LinkedIn, Instagram and Twitter. Subscribe to the free Fully Briefed daily newsletter here.