Email fraudsters get tricky with ANZ scam

NetSafe executive director Martin Cocker

Free audio stream, including stories that are padlocked on our site. Listen on any device, anywhere. Updated twice daily. The audio stream takes several seconds to start on Android devices.

Launch Radio player

Online scammers continue to get more sophisticated.

The below email appeared in the inbox of an NBR staffer.

The fake message is lent an air of authenticity by its inclusion of an actual ANZ phone number, and the sensible security option to visit a local branch.

NBR ONLINE forwarded the scam email to NetSafe executive director Martin Cocker, who says as a rule, the banks never send you an unsolicited link to the login via email.

Of this specific scam, Mr Cocker comments.

"The give-away in this email is the login url which has a Mexican domain. If you follow that link you get to a legitimate looking login screen. When you enter your details,  you then get diverted to the actual ANZ home page (www.anz.co.nz).

"To the user it looks like a simple failed login. Meanwhile the criminals bot will attempt to quickly login using the details you've just provided - and if it connects they will get to work relieving you of your money," he says.

"The use of NZ phone numbers is not unusual. It may simply be an IP phone number that diverts, or it could even be a legitimate phone number of the ANZ. It doesn't matter. They even handily advise you to to go to the branch and set up Internet Banking.  They're just looking for the percentage of people who might enter their bank login details." 


8 · Got a question about this story? Leave it in Comments & Questions below.

This article is tagged with the following keywords. Find out more about MyNBR Tags

Post Comment

8 Comments & Questions

Commenter icon key: Subscriber Verified

Delete all emails supposedly from your bank, especially if you are not expecting a communication. If it's serious, they will write or phone.

Reply
Share
  • 0
  • 0

Didn't take long for that website to be shut down. Pity, I was hoping to enter some fake data to annoy the scamming scum.

Reply
Share
  • 0
  • 0

Don't be silly, there might be other malwares when you load that page into your browser.

Reply
Share
  • 0
  • 0

How about banks or any financial institution revert to snail mail for all their customer communications, it will circumvent these philshing attempts and I am sure NZ Post will welcome the extra work.

Reply
Share
  • 0
  • 0

Umm, a majority of identity theft is done by stealing "snail mail". With the data they collect on you via the post, the get access to certain things, change your details and hijack you. Snail mail is not the answer. Common sense is.

Reply
Share
  • 0
  • 0

"Registed" is a giveaway too. Poor spelling, the trademark of the scammer. Unfortunately, fewer people are likely to notice that, these days.

Reply
Share
  • 0
  • 0

If they can chase Dotcom to the ends of the earth. Why can the authorities not shut these criminals down?

Reply
Share
  • 0
  • 0

Because it is only your real money, and not a copyright issue.

Reply
Share
  • 0
  • 0

Post New comment or question

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

NZ Market Snapshot

Forex

Sym Price Change
USD 0.6454 0.0000 0.00%
AUD 0.9021 0.0000 0.00%
EUR 0.5771 0.0000 0.00%
GBP 0.4195 0.0000 0.00%
HKD 5.0087 0.0000 0.00%
JPY 78.6100 0.0000 0.00%

Commods

Commodity Price Change Time
Gold Index 1133.3 8.610 2015-08-28T00:
Oil Brent 50.0 7.240 2015-08-28T00:
Oil Nymex 45.2 2.730 2015-08-28T00:
Silver Index 14.5 0.120 2015-08-28T00:

Indices

Symbol Open High Last %
NZX 50 5634.9 5688.3 5634.9 0.63%
NASDAQ 4792.1 4836.8 4812.7 0.32%
DAX 10335.9 10336.9 10315.6 -0.17%
DJI 16649.4 16670.0 16654.8 -0.07%
FTSE 6192.0 6247.9 6192.0 0.90%
HKSE 22424.4 22424.4 21838.5 -1.04%
NI225 18908.7 19192.8 18574.4 3.03%