Fake ASIC emails targeting users: Alert Priority High
You are advised that scammers are continuing to target Australian Securities and Investments Commission (ASIC) Registry customers with fake emails that attempt to obtain money and personal information.
ASIC has posted on its website an
example of a scam email that claims to come from the ‘ASIC Messaging Service’ and has the subject line ‘Renewal’. The fake message appears to come from a credible email address.
The email text directs recipients to click on a link to obtain information about renewing their
business or company name. However, clicking on the link risks infecting the recipients’ computer with malicious software that aims to extract money or sensitive data, or directs the recipient to a fake invoice for payment.
ASIC warns its customers to be wary of emails that do not address them by name, misspell their details and incorporate unknown attachments.
The organisation also advises users not to click on links in suspicious emails and to keep their anti-virus software up to date.
ASIC customers can also check their renewal date by searching the business names register on the ASIC
website, noting that ASIC will only issue a renewal notice 30 days beforehand. Customers can forward suspicious emails that claim to be from ASIC to ReportASICEmailFraud@asic.gov.au. Alternatively, they can contact ASIC to confirm whether a notice is legitimate.
Stay Smart Online recommends that if you are unsure whether an email is legitimate, you verify the authenticity of the message with the organisation the message purports to be from. Always use contact details sourced from the business or government organisation’s legitimate website rather than any details included in the message itself.
If you do click on any suspicious links, immediately advise the relevant business and government organisations and monitor your accounts for unusual activity. If you believe your computer may be infected, you may choose to seek assistance from an independent technical expert.
The information provided here is of a general nature. Everyone’s circumstances are different. If you require specific advice you should contact your local technical support provider.
Thank you to those subscribers who have provided feedback to our Alerts and Newsletters. We are very interested in your feedback and where possible take on board your suggestions or requests.
This information has been prepared by Enex TestLab for the Attorney General’s Department (‘the Department’). It was accurate and up to date at the time of publishing.
This information is general information only and is intended for use by private individuals and small to medium sized businesses. If you are concerned about a specific cyber security issue you should seek professional advice.
The Commonwealth, Enex TestLab, and all other persons associated with this advisory accept no liability for any damage, loss or expense incurred as a result of the provision of this information, whether by way of negligence or otherwise.
Nothing in this information (including the listing of a person or organisation or links to other web sites) should be taken as an endorsement of a particular product or service.
Please note that third party views or recommendations included in this information do not reflect the views of the Commonwealth, or indicate its commitment to a particular course of action. The Commonwealth also cannot verify the accuracy of any third party material included in this information.