Small businesses have been warned to stay alert for email scams after more than 10,000 people reportedly downloaded malicious software disguised as an energy bill.
Scammers posing as electricity giant AGL have sent out thousands of emails to businesses and individuals asking them to pay overdue bills.
According to AGL, the scam emails tell users they have passed their energy consumption limit and need to pay their bill.
The email “presents as an e-Account”, which prompts customers to download a .zip file containing ‘ransomware’, which locks your computer and demands an $800 payment.
Raymond Schippers, a senior analyst at worldwide cyber security firm Check Point, told Fairfax at least 10,000 people are estimated to have downloaded the malware and were “very likely to have been infected”, although many more people may have been caught out.
AGL said in a statement it would “never send an email asking for personal banking or financial details”.
“Anyone receiving a suspicious email should delete it immediately or, if opened, not click on any links within the email,” the company said/
“AGL advises recipients of any suspicious emails to run antivirus software and block the sender by adding to the junk folder list.”
How to protect your business
Online security expert Michael McKinnon told SmartCompany ransomware is one method scammers use to target small businesses and individual consumers.
“You get a lot of small business people opening .zip files or invoices all the time, and so scammers keep getting away with it,” he says.
McKinnon says the best defence against scams is the “human defence”.
“Keeping awareness of employees as high as possible is the best thing you can do,” he says.
“Be aware not every email you’re going to get will be legitimate. Even the best anti-spam software and filters will still let one or two emails through, and that’s where the human factor to doubt comes in.”
On a technical level, McKinnon says backing up files is the number one defence against ransomware, and is an important step many small businesses don’t take.
“Once you’ve been infected it’s too late, you’ve either got to restore a previous backup, or if you don’t have one you’ve got to pay the ransom,” he says.
“And then you run the risk it still doesn’t give you access.”
McKinnon also recommends keeping a copy of malware-ridden computers backed up in case the decryption codes for the ransomware became available, as has occasionally happened in the past.
AGL advises anyone with concerns over this scam should contact AGL the Australian Competition and Consumer Commission’s Scamwatch.