Phishing scam targets ANZ log-in details
Scammers are targeting bank customers' login details with fake websites which are almost exact replicas of real sites.
A fraudulent email sent this morning warned ANZ customers that they needed to update their account information.
"This is a compulsory measure. Failure to update your information will lead to service suspension," the email read.
It included a link to a fake website using very similar logos and formatting to ANZ, with the only obvious giveaway a different URL address.
The fraudsters' site even included warnings and security alerts about scams, with links that led back to the real ANZ site.
The latest scam is an example of "phishing", which is aimed at stealing login details or personal information.
ANZ said it had a fairly steady stream of phishing scams brought to its attention.
"Our advice to people is to be aware of what type of scams are out there and to never give passwords to anyone," a spokesman said.
Kiwibank has also been targeted by phishing scams and spokesman Bruce Thompson said the attacks were not going to stop.
"The sites they create are pretty credible, and it would take an educated eye to pick that some of these false sites are not the real thing," he said.
But customers realised that the bank would never ask them to provide login details through an emailed link, he said.
"Fortunately, I think people are pretty vigilant now."
A Ministry of Business, Innovation and Employment (MBIE) report last year found there were 670 bank phishing and tax refund scams reported in 2012.
However, those resulted in the loss of only $66,833, down from $86,821 in 2011.
MBIE offers the following tips to protect yourself from banking scams:
❏ Never enter your personal details into a website unless you are sure it is genuine.
❏ Check website addresses carefully. If they're similar to a genuine company's URL, but not quite right, be wary.
❏ Never visit your bank's website by clicking on a link - type in the website address yourself.
❏ Don't reply to, click on any links, or open any files in spam emails. Don't call any numbers in spam emails.
❏ Don't use software on your computer that fills in forms for you.
❏ Never send your personal details or accounts or passwords in an email.