Energy company AGL is warning that fake electricity bills are being emailed in an attempt to spread ransomware, with reports that a recent scam claims to be from the energy provider.
The fake email is described as looking like a standard bill, but directs the email recipient to click on a link which takes them to a website designed to install ransomware on the victim’s computer.
Once installed, this ransomware will encrypt the victim’s files and demand payment to decrypt them.
Stay Smart Online warned of a very similar scam in June this year. The latest emails include a statement which claims that people affected by recent floods and storms may receive assistance.
AGL states on its website it will never send an email asking for personal banking or financial details.
‘Anyone receiving a suspicious email should delete it immediately or, if opened, not click on any links within the email,’ AGL says.
‘AGL advises recipients of any suspicious emails to run antivirus software and block the sender by adding to the junk folder list.’
What is ransomware?
Ransomware is a type of malicious software that handicaps computer functionality, for example, through browser hijacking or encrypting personal data, and offers to restore the functionality for a fee, which is a form of extortion.
Recovery of systems that have been infected with ransomware is almost impossible without clean backups, so prevention is always the best approach.
While there have been reports that files are recovered if the ransom is paid, this does not protect your computer against further attacks. The attacker may simply encrypt your files again, and increase the ransom. Further, paying the ransom reinforces the criminal business model. For these reasons, responding to extortion is not encouraged.