Australians who bank with ANZ have been told to be on guard against a cunning email phishing scam which aims to harvest their data.
Computer security firm Mailguard on Friday sounded the alarm over the scam which sees targets receive emails purportedly from ANZ. The bank has 8 million customers.
While the email’s sender display name is ‘ANZ Online’, the actual email is coming from a compromised account.
The email reads: “You Have One Important Security Message In Your Internet Banking Account,” and asks targets to “log on” to view the message by hitting the link.
Then, victims are led to a page that appears legitimate which asks users to log in to the ANZ website.
However, this is a phishing page used to gain customers’ login details.
Once users have surrendered their details, they are led to another page asking them to update their security questions, in order for the scammers to gain more personal details to hack other accounts.
However, there are a number of hints that this is a scam.
The email doesn’t use your name, just ‘Dear ANZ Customer’.
The email doesn’t use any of your information.
There’s a stray accent in ‘AccountÂ’.
Different font sizes and strange grammar.
On the questions and answer page, there are grammatical problems such as ‘‘update questions & Answer’ and ‘Verify to us your security questions’.
If you receive this email, you should delete it.
ANZ suggests customers always pause before sharing personal information, use two-factor authentication, double check suspicious messages and turn on automatic updates.
You can report suspicious messages by emailing email@example.com, and remember to never click any links in suspicious messages.
Make your money work with Yahoo Finance’s daily newsletter. Sign up here and stay on top of the latest money, property and tech news.