The AGL Electricity Ransomware email has hit thousands of Australian users which is carrying Trojan malware and encrypting their computers.

The cybercrime network behind the attack have leveraged the well-known brand of the Australian utilities provider AGL, disguising their attack as an ‘Electricity Bill’ attachment in an attempt to trick unsuspecting email recipients into downloading the malware.

The email appears to be from AGL advising the recipient of their current outstanding amount. The fake ‘AGL bill’ attached is a ZIP file, which contains a JavaScript file. Upon extracting the ZIP file and executing the resulting JavaScript file, a Trojan is downloaded and installed.

Why is Trojan malware dangerous?

Trojans sit quietly in the background, and will take actions not authorised by the user, such as modifying, stealing, copying or even deleting data.

This type of malware is most dangerous because the user may not notice it running in the background until such time they are made aware – this can sometimes be weeks or even months after the event.

How can I protect myself from these types of email scams?

To reduce the risk of being tricked by one of these scams, you should immediately delete any emails that:

  • Seem suspicious and ask you to download files or click any links within an email to access your account or other information.
  • Are purporting to be from businesses you may know and trust, yet use language that is not consistent with the way they usually write (including multiple grammatical errors)
  • Ask you to click on a link within the email body in order to access their website. If unsure call the company/person directly and ask whether the email is legitimate

If unsure, do not click links or download files contained within the email and contact the purported sender directly to verify the authenticity of the email.

AGL also share tips on how phishing emails operate on their website.

We recommend that you share these tips with your staff to make them aware of these campaigns. By employing a cloud email and web security solution like All Star IT’s Spam Filter – Tech Guard Antispam, you will reduce the incidence of these new variants of malicious email entering your network.

Speak to us today about implementing our Antispam on your domain name. 1300 338 208

%d bloggers like this: