Australian taxpayers numbering 18.7 million have been warned of a scam email that seems to be sent from the myGov tax refund. It has been found that the email is designed in such a way that it can steal the private details of the Aussie taxpayers.
MailGuard, the Email Security Service had issued an alert on the scam email, supposed to be a phishing email. It warns that the scam conducted by the scammers is dangerous since myGov is an access portal providing various benefits to the Australian residents like Jobseeker, Medicare and Jobkeeper.
“Anyone falling victim to this scam will be vulnerable to having all of these government accounts compromised and their identity is stolen which can lead to serious repercussions,” MailGuard said in a blog post.
“Since this scam also targets users’ financial information, their credit card credentials can be used to make fraudulent purchases, potentially leading to significant financial losses. Credentials are also likely to be harvested for use in future cyber-attacks, for identity fraud and sold on the dark web.”
The Digital Transformation Agency stated in its 2019-2020 annual report that currently there are 18.7 million active myGov accounts. It also mentions that it could be successful in duping the unsuspecting Australian residents having accounts on the portal through the myGov tax refund scam.
Apart from this, the scammers are also targeting the Australians those who are in need of financial assistance and are continuously accessing the portal.
“This is a particularly sinister scam as cybercriminals are attempting to exploit vulnerable Australians, many of whom are suffering economic hardship as a result of the economic uncertainty caused by Covid-19.”
“By falsely claiming that users are eligible for a refund, the cybercriminals behind the attack are cruelly capitalising on those unfortunate circumstances.”
How Is The Scam Taking Place?
The scam email from myGov tax refund claims that the recipient of the email is eligible to receive $130.81. It also asks the victims to fill out a so-stated “Secure Form” to receive the refund. It mentions confirming the credentials and other information to proceed. Otherwise, their inputs will be ignored.
“When users click the ‘Secure Form’ button they are presented with a fake myGov login page. This is a very faithful replication of the actual myGov login page, complete with high-quality branding elements (including the myGov and Australian Government logos) and supports links,” MailGuard said.
“However, the domain used in the page URL doesn’t belong to myGov or the Australian government. Instead, the page URL begins with ‘airenherbals[dot]com’ – a red flag pointing to its illegitimacy.”
The webpage that the users are redirected to is a phishing page hosted on a compromised website. All the personal details under the myGov username including the email IDs and password is stored and extracted.
After this, the victims are taken to a webpage that is quite different and asks them to fill up certain personal information such as full name, address, birthdate etc. But it is clear that the webpage is a fake one.
“Just as with the previous login page, this page also looks quite legitimate, as you can see,” said MailGuard.
When this page is filled up, the users of myGov tax refund are taken to another form, where they are asked to enter their financial details like credit or debit card details. On submitting this form, they are again taken to a fake “processing page” and prompted not to close the window.
“While MailGuard is stopping this email scam from reaching the inboxes of its customers and partners, other Australians remain vulnerable,” said the email security platform.
“We encourage all email users to be extra vigilant against this kind of email and whatever happens, do not open or click the links.”
The genuine myGov website has also stated an absolute solution if the victims spot such emails.
“If you think someone has accessed your myGov account, contact us,” the myGov website states. It further states, “If you’ve received this scam, you can report it to Scamwatch and contact myGov at 13 23 07”.
“The messages you get in your myGov Inbox are secure. It’s safe to open links included in myGov Inbox messages.”
Additionally, you can change your app password and sign out every time you are done with the app usage.
Source: Yahoo Finance
Disclaimer: Read the complete disclaimer here.