Email Phishing - Fraudsters posing as Catalyst

2 March 2021 by Catalyst

We recently learned about some email phishing activity,  where the cyber criminals are posing as Catalyst IT.

Phishing attacks disguised as Catalyst IT

This particular scheme involves the scammer posing as a Human Resource Manager that emails individuals on the pretence of recruiting for a position at Catalyst. After some initial job chat, the scammer goes on to suggest that the interested applicant needs to complete some training (in this case, Cisco training), in order to receive a final job offer.  They then offer to register the candidate for the training, which will require a payment of $300. 

These emails looks very authentic - you could be forgiven for believing they are real.

Top tips to avoid phishing scams

Know how to identify phishing scams

Phishing may come to you in various forms, through emails and even text messages. For this reason, it’s crucial that you know how to identify a phishing message from an authentic one. One of the most common forms scammers use is an email where they use an almost identical email domain of an official company, particularly financial institutions, to gain access to people’s bank accounts and other financial platforms.

When you want to know how to identify phishing scams, you must first make sure to check the source of incoming emails and messages to you. A good example is, if you receive a message from your “bank,” remember that they will never ask you to send your password or personal information through email. When you see details like this, it’s likely a scam and it’s best to delete the email right away.

Be mindful when clicking links

Suspicious links, whether on emails, social media messages, or even text messages must not be clicked. Make sure you check for its authenticity before you click on them. Today, many links contain viruses that can infiltrate your system without you knowing, so be careful!

Be cautious with online deals

Remember that  many online deals are so tempting. However, it’s easy to get swayed by persuasive emails and advertisement.  This is why you must be on the lookout for too-good-to-be-true offers and always read everything before you seal a deal.

Avoid visiting lesser known websites  

Scammers set up websites to lure unsuspecting visitors and buyers to.  If you receive an invitation to shop at a company's site that you've never heard of, stop and think twice.  That way, you can effectively avoid becoming a victim of phishing tricks that could involve you losing a lot of money. 

How to report a phishing attack in Australia

The Australian Government has an official site that talks about email phishing scams, here.  You can also reports attacks to the Government's ACCC Scamwatch website.