We are starting to see an increase in malicious emails being sent, under the guise of "Outstanding Invoices". At face value, these appear to be sent from legitimate accounting software providers including Xero, MYOB, QBO.
These emails are nothing more than an attempt to get you to download malicious code so that hackers can get into your computers and computer networks, and screw up your day, by either stealing critical data (ie: banking logins, etc), locking your data (ie: crypto locker) or undertaking identity theft.
The emails appear legitimate. They appear exactly the same as other emails you may receive from legitimate suppliers you have done business with. They are getting more sophisticated, and are using email marketing tools, which can start to mask some of the "sent from" addresses.
What can you do to stay safe?
Here are some examples of emails we have recently seen that are malicious - we will continue to add images as we see more come through, so check back regularly.
** Note: It turns out that the email from @conkar.com.au is not in fact a scam - we keep receiving these, so dug further and finally (through a long and circuitous path) found out who the business was that it actually related to. Turns out we have been receiving emails from the company on behalf of a client that last used their business >5 years ago, and for some reason, our email address had been linked to their account. We spoke directly to the accounts department of the business, and suggested that if they were sending emails out of their accounting software, that they really need far clearer details about: 1) the correct name of the business and 2) contact details of the business. While we do not recommend calling the phone numbers included in emails that we may think could be spam, having that level of detail will at least allow you to search on line and validate the authenticity of the correspondence.
is the Director and Senior Bookkeeper at Laurus.