VIRUS ALERT – AGL Energy Bills Scam

Recently, AGL have been plagued by an email scam. The energy company have release a statement acknowledging the email scam advising that “the scam email presents as an e-account and asks readers to click on a link,” the statement said. It “contains malicious malware that has potential to access personal information. AGL advises it will never send an email asking for personal banking or financial details. Anyone receiving a suspicious email should delete it immediately or, if opened, not click on any links within the email.” The email scam has been reported to the Australian Federal Police, Scamwatch and the Australian Competition and Consumer Commission.

agl-scam-email

The email has been created to look identical to AGL Energy electronically sent bills which prompts the user to click to download a copy.

It then saves a .zip file including the malware “ransomware” which has been designed to block access to a computer system until a sum of money is paid.

Over 10,000 Australian’s are reported to be infected with the malware.

If you receive this email please do not open the attachments and delete the email immediately.

A few tips to help you stay protected:

  • When attempting to open it on your phone or MAC devices, it will give an error to use a Windows computer
  • The .zip file will be suspicious
  • The URLs will be in the form of “checkyourbills.com” or “electricitybill.com”
  • Ensure that your backups are working and you have a rotating set of drives or tapes
  • Ensure your Antivirus is up-to-date
  • Be aware of any emails that ask you to reply quickly or act fast
  • Alert users to new malware campaigns immediately.
  • If the email is from someone you do not know, do not open it
  • Implement effective email security tools and policies, such as blocking executable or zipped attachments from unknown senders, or setting email filtering rules.
  • Prevent downloading executable or zipped attachments via HTTP/HTTPS connections.
  • Microsoft Essentials, AVG, and other free AV products should not be used
  • Isolate infected endpoints from the network as soon as possible
  • Subscribe to alert services such as Australian Government’s Stay Smart Online, which updates on the latest trends in our region.

If you have received this email and have any urgent concerns regarding this issue, please contact Interlinked on 1300 302 207.

Related posts: