ANZ Banking Group is the subject of an email phishing scam being blocked by the MailGuard team this morning, which is designed to steal the Internet Banking credentials of recipients.
The email, which assures recipients that ‘We have round-the-clock account security provided by ANZ to help protect your account,’ advises recipients that they have been locked out of Internet Banking for security purposes, and provides a link for customers to complete a ‘security process’ to unlock their account.
The link in the email directs unsuspecting customers to a fraudulent landing page for ANZ Internet Banking, where users are first required to submit their Customer Registration Number and Password.
Not satisfied with the customers banking credentials, the criminals behind the attack then request that users hand over their Full Name, Date of Birth, Drivers License No., and their Mobile Number.
Once complete, users are redirected to the legitimate ANZ banking website, with many customers none the wiser that their personal information, including their banking credentials, is now in the hands of criminal for identity theft or sale to the highest bidder on the dark web.
MailGuard was first to identify and block this scam in the early hours of this morning, and is continuing to intercept attempts by the criminals at reaching a wide number of user email accounts. Checking the sender details of suspicious emails is one way of verifying whether they are legitimate communications or phishing attacks. In this instance, the email does not originate from an ANZ email domain.
Cyber-criminals frequently exploit the branding of large companies like ANZ in their scams, because their good reputation lulls victims into a false sense of security. Because of the large number of customers, ANZ is a regular victim of these scams.
Phishing continues to be one of the most prevalent forms of cyber-crime. The vast majority of online scams - more than 90% - are perpetrated using email, so it’s wise to always be skeptical of messages from unfamiliar senders asking you to log into your accounts.
Phishing attacks can be enormously costly and destructive, and new scams are appearing every week. Don’t wait until it happens to your business; protect your business and your staff from financial and reputational damage, now.
For a few dollars per staff member per month, add MailGuard's cloud-based email filtering protection to your business security. You’ll significantly reduce the risk of new variants of malicious email from entering your network. Talk to an expert at MailGuard today about your company's cybersecurity needs: firstname.lastname@example.org
Stay up-to-date with new posts on the MailGuard Blog by subscribing to our email updates.