Australia Markets open in 1 hr 23 mins

WARNING: these fake ANZ Bank emails look just like the real thing

Fake ANZ email. (Source: Mailguard)

ANZ Bank customers are warned not to click on a scam email that looks exactly like one that the bank might send.

The emails, which were first detected Tuesday afternoon by security firm Mailguard, use ANZ Bank graphics and branding to look authentic to the unsuspecting customer.

The From address in the emails show the domain “anzsupport.cf”, which is not an ANZ Bank internet name but looks almost like one.

To lend even more authenticity to the email, the contents discuss the importance of challenge questions – the personal questions that users resort to when they forget their password.

“Challenge questions are a security feature that adds an extra level of protection,” the scam email reads.

“Use the link below to sign in and confirm your challenge questions.”

Fake ANZ webpage linked from fake ANZ email. (Image: Mailguard)

The link takes the user out to a webpage that is also loaded with very real-looking ANZ Bank graphics. It is there the victim types in their customer number and password, then a second page where three challenge questions are entered.

After the scammer takes this information, it can be used to steal money from not just ANZ but other websites that the customer has the same password or challenge questions.

“Cybercriminals have taken great pains to replicate official landing pages from ANZ – including incorporating the brank’s branding and logo using high-quality graphical elements,” said a Mailguard spokesperson.

“All this is done in an attempt to trick the users into thinking the scam is legitimate.”

Fake ANZ webpage asking personal challenge questions. (Source: Mailguard)

The fake emails have been reported to ANZ.

The bank states on its security tips webpage that it would never send an email requesting “account details, financial details, or login details for ANZ phone banking, ANZ mobile banking and ANZ internet banking”.

The bank warns customers to never try to access its websites through an email link but always go to anz.com in the browser address bar.

“If you receive a hoax email, delete the email immediately. Do not click on any links in the hoax email and; do not open any attachments,” ANZ states.

Make your money work with Yahoo Finance’s daily newsletter. Sign up here and stay on top of the latest money, news and tech news.

Now read: Melbourne rejects new Apple flagship store in Fed Square

Now read: Why women are asking for permission to spend as little as $343

Now read: Australia, we’re in an ‘income recession’: Here’s what that means