Debunking hoaxes and exposing scams since 2003!

Hoax-Slayer Logo

ANZ Bank 'Account Re-confirmation' Phishing Scam


Outline

Email purporting to be from large Australian and New Zealand Banking group, ANZ claims that you need to click a link to re-confirm your account.

Anz bank phishing scam
© Depositphotos.com/ magann

Brief Analysis

The email is not from ANZ. It is a phishing scam designed to steal your ANZ account login details. If you receive this or similar emails, do not click any links or open any attachments that they contain.

Example

Subject: New Message From ANZ Bank
Dear ANZ! Customer,
Your ANZ Bank of Australia need re-confirmation to keep your account up to date.
You have less than 24hrs to click re-confirm given below to register your account in our data base.
Re-confirm
ANZ Bank


Detailed Analysis

'Account Re-confirmation' Email Claims to be From ANZ Bank

According to this email, which purports to be from large Australian and New Zealand bank, ANZ, your ANZ account needs 're-confirmation'. Supposedly, this process is required to keep the account up-to-date.

The message also warns that you have less than 24 hours to click the 'Re-confirm' button and register your account in the bank's database.

Email is Not From ANZ - Phishing Scam

However, the email is certainly not from ANZ. Instead, it is a phishing scam designed to trick you into supplying your account login credentials.

If you click the link in the scam message, you will be taken to a fraudulent website designed to emulate a genuine ANZ login page. After you enter your customer reference number and password on the fake login form, your browser will redirect to the genuine ANZ website.

At this point, you may think you have successfully completed the 're-confirmation' process and go on with your day.

Meanwhile, however, the criminals responsible for the phishing attack can collect your login information from the fake site and use it to hijack your real ANZ account.

Once they have gained entry, the scammers can then transfer funds from your account and conduct fraudulent activities in your name.

Bank Phishing Emails Very Common

Despite considerable publicity, these types of phishing attacks continue to find new victims every day.

Your bank will not send you an unsolicited email that demands that you provide sensitive personal information by clicking a link or opening an attached file. It is safest to access your online bank accounts by entering the account address into your browser's address bar or via a legitimate bank app. Never click links or open attachments in emails that claim that you must update details or provide account information by clicking a link or opening an attached file.




© Depositphotos.com/ thailerderden10


Last updated: October 13, 2014
First published: October 13, 2014
By Brett M. Christensen
About Hoax-Slayer