Beware of a FAKE email requesting Renewal of your Business Name with ASIC, complete with Australian Securities & Investment Commission logo. It is a SCAM containing a link to a dangerous website that contains Ransomware !
The bogus email is being sent from “asic-gov-au.co”, a domain name that obviously resembles "asic.gov.au" and has been deliberately selected to deceive recipients.
The underlined "Renewal letter" link connects to another domain URL that I will not share here. If you have received the message, then hovering your mouse over the link (without clicking) will reveal the actual URL destination. It is a highly suspicious "guestaccess.aspx" file which has no association whatsoever with ASIC. Ransomware awaits !
“Aimee Kaur” is not employed by ASIC.
Who registered the domain name “asic-gov-au.co” ?
Ping Lun of Xiamen, China registered this domain name on the 5th March 2017. However, it is likely this name and address are also phony.
The mail server is located in Quebec, Canada.
Other bogus domain names used
The domain name “asic-gov-au.co” was duly Blacklisted by Spamhaus.org and SURBL.org in April 2017. Each time this occurs, the cybercriminals simply register another domain name and continue their email scam. Here is a list of other known bogus domain names used in the ASIC Business Name Renewal email scam:
How to recognise the GENUINE Business Name Renewal Email Advice from ASIC
On Wednesday, 22nd March 2017 I received this authentic email message from ASIC.
Notice that the genuine ASIC email message was sent from their actual domain name “asic.gov.au”
You can examine the header code in the email message to establish where the message was actually sent from; the domain name and IP address.
When you hover your mouse over the underlined "Renewal letter" link, notice that also connects to the genuine ASIC website sub-domain “post.asic.gov.au”. You can therefore confidently presume that link is safe to click. It does link to a PDF download file containing instructions explaining how to proceed and renew your Business Name.
The message is signed off by Rosanne Bell, Senior Executive Leader at ASIC. Now I guess that name is easy to include in a fake message. However you can Google her name to establish that she is in fact an Executive employed by ASIC, unlike the bogus name used in the fake email message above.