The fake Origin Energy bill notice in the screenshot above is an example of a new email scam that is targeting inboxes today.
The scam email message invites recipients to view their bill online, but the .doc file the link points to is infected with hidden malware.
Energy companies, telcos, banks, media companies and online business platforms are some of the most commonly brandjacked industry categories.
Origin Energy is regularly imitated by scammers looking to trick people into clicking on their malicious emails. As recently as last month Help2u detected another email scam abusing the Origin trademark.
There is a growing problem emerging of template based scams of this kind. Known as Malware-as-a-service (MaaS) scams, attacks like this are based on DIY kits sold on the dark web for a few hundred dollars. MaaS kits include email templates and malware code that enable even criminals with minimal technical skill to perpetrate scams.