Earlier this week, Yahoo Finance reported on a scam where Aussies were receiving texts from ‘CommBank’ warning about “abnormal activity”.
The same day, reddit user pongoes received a very similar message that appeared to be from NAB.
Now, it looks like scammers are sending emails from what looks to be from St. George Bank.
In a post to the now-closed Facebook group Everything Sutherland Shire, a user alerted community members to emails received by her friend that appeared to be from a bank – that she isn’t a customer of.
The sender of the email says ‘St George Bank’ and the email preheader warns: ‘Your Account Access Has Been Disabled’.
There’s even an attachment to the email.
For all intents and purposes, it looks just like the real deal.
In a statement to Yahoo Finance, a St. George Bank spokesperson said scammers use names and logos to pass off as legitimate businesses.
“Through this deception they trick people into giving out personal or banking details,” the spokesperson said.
St. George would never ask you to update, verify or change any online banking details directly through an email reply, they added.
“Reporting scams is really important as it allows us to quickly investigate and potentially minimise the chance of others being affected.”
Phishing emails that appear to be from St. George should be forwarded to firstname.lastname@example.org, before deleting it from your inbox, your sent folder and your trash folder, the spokesperson said.
The St. George hoax inbox is monitored around the clock, and users will receive an auto-reply to confirm the email has been received.
Those who feel they may have had their security compromised, or notice a transaction that they did not make, should contact St. George immediately on 13 33 30, the spokesperson said.
Related story: Is this major bank text scam targeting YOU?
Related story: The 10 biggest scams of 2019 so far
Related story: Were you emailed a fake bill from Optus?
‘Remain vigilant’: CBA
Like St George, Commonwealth Bank will not ask customers for confidential banking details like their PIN, NetBank client number or password.
A CBA spokesperson said customers who notice unusual activity should report it to CBA on 13 2221.
Non-CBA customers who have been targeted by a hoax SMS should contact their bank immediately and update their security details, the spokesperson advised.
Be suspicious about messages that ask for confidential information and don’t open any unfamiliar links or attachments.
If you’re not sure that a call is really from the bank, hang up immediately and contact them again through an official number stated on the bank’s website, and keep tabs on your transactions and set up notifications for extra protection.
Have you been sent a suspicious message? Send your tips to email@example.com.
Make your money work with Yahoo Finance’s daily newsletter. Sign up here and stay on top of the latest money, news and tech news.