ATO Penalty Notice Scam Email

The well-formatted email includes the Australian Government coat of arms image sourced from the ATO website which is an effort by the scammers to add legitimacy to their scam email, in an attempt to bypass filtering software.

Here is an example below:

The downloaded .zip file contains a malicious JavaScript file which is used to download further malware such as CrytoLocker or CryptoWall ransomware, or spyware such as keyloggers.

Leave a Reply