Money Scams - Thanks to Westpac
The following are some scam email examples reported to Westpac for the following months. Westpac have highlighted some of the ways that can help you spot a scam email.
January 2016
Email subject line: Your account access is limited. Why?
Description: This email hoax attempts to scare you into believing that ‘illegal payments’ have been performed via Online Banking. The link leads to a fake website designed to harvest your credentials. Do not click on any links in such emails.
December 2015
Email subject line: Important Message Ref XXXX regarding your Westpac Online Banking
Description: This email hoax threatens that your Online Banking access will be deactivated unless you act quickly by clicking on the provided link. The link leads to a fake website. Do not click on any links in such emails.
Email subject line: Online Banking Notification
Description: This email hoax advises that your Online Banking access has been disabled. Helpfully a link has been provided to re enable your access – of course, it is a trick and will lead to a fake website. Do not click on any links in such emails.
Email subject line: New Message update from Westpac
Description: This email hoax is crafted to create a sense of urgency that you must take action otherwise an unknown debit will occur on your account.
Do not click on any links in such emails.
Phone scams alert
Fraudsters don't only strike online. There's been an increase in phone scams where the caller claims to be from a reputable organisation offering to assist with a computer issue.
They then attempt to take control of, or access your computer. Do not allow this under any circumstances; just hang up.
Also, be particularly vigilant if you’re asked to disclose any Online Banking sign-in details or Bank SMS Code sent to your mobile. Again, just don’t do it.
Protect your SMS code like you would a password or PIN
Disclosing your Internet Banking Protect SMS code - or any Online Banking access codes - to others contravenes the banks Terms and Conditions. Doing so may find you liable for any losses due to fraud on your account.
Other recent phone scams involve hoax callers claiming to be bank employees, who then request customer account or personal details. For better protection from phone scams:
- Keep all access codes (e.g. ATM password, card PIN, Online Banking password, Bank SMS Code we send to your mobile) secret and secure. Banks will never ask for this information over the phone or on email.
- If you're unsure, ask for a reference number and call back on a trusted number (i.e. phone book) to confirm if the call was genuine
- Never give a stranger remote access to your computer
- Do not give out your personal, account or online details unless the phone number comes from a trusted source
- Keep your computer protected by running and updating security software purchased from trusted sources
- If you think you've fallen for the scam, contact your bank immediately
SMS scams
September 2015
Description: SMS phone scam "Restricted Access"
May 2015
Description: SMS phone scam "Review and update details"
Malicious software alerts. The following are recent example of some signs that your machine may be infected with malicious software such as a Trojan or virus.
October 2015
Description: We’ve recently detected a new malware variant. Here is what happens after you log into Corporate Online on a computer that has been infected. This malware compromises your computer and tries to captures your token password and number.
Please Note: Only accounts which require a second users approval will be prompted for the "Second user authorisation".
When signing in you will receive the "Please wait" screen. This screen is quite slow when loading.
Next you will unexpectedly be asked to confirm your token details. Do not enter your token details into this screen, in the event you have please call our Corporate Online Help Desk on 1300 134 291 Mon - Fri.
When a second authoriser is required for a transaction, you will be asked for a second users details. Do not enter your details into this screen, in the event you have please call your bank.
March 2015
Description: We’ve recently detected a new malware variant. Here is what happens after you log into Online Banking on a computer that has been infected with this malware. This malware injects a new page and asks you to enter your date of birth, drive licence and asks you to download an malicious application to your mobile phone. If you have installed the application on your mobile, then un-install it as soon as possible.
In the event you have entered your details the screen will now prompt you to enter an SMS code. If you have entered any personal information into either screens, please contact your bank immediately.
Please note, these are just some examples of what is out there in the market place. Be aware and if something doesn't feel or seem right then better to drop into your local branch of your bank and find out or better still, give your bank a call.