Email fraudsters get tricky with ANZ scam

NetSafe executive director Martin Cocker

Online scammers continue to get more sophisticated.

The below email appeared in the inbox of an NBR staffer.

The fake message is lent an air of authenticity by its inclusion of an actual ANZ phone number, and the sensible security option to visit a local branch.

NBR ONLINE forwarded the scam email to NetSafe executive director Martin Cocker, who says as a rule, the banks never send you an unsolicited link to the login via email.

Of this specific scam, Mr Cocker comments.

"The give-away in this email is the login url which has a Mexican domain. If you follow that link you get to a legitimate looking login screen. When you enter your details,  you then get diverted to the actual ANZ home page (

"To the user it looks like a simple failed login. Meanwhile the criminals bot will attempt to quickly login using the details you've just provided - and if it connects they will get to work relieving you of your money," he says.

"The use of NZ phone numbers is not unusual. It may simply be an IP phone number that diverts, or it could even be a legitimate phone number of the ANZ. It doesn't matter. They even handily advise you to to go to the branch and set up Internet Banking.  They're just looking for the percentage of people who might enter their bank login details." 

This article is tagged with the following keywords. Find out more about My Tags

Post Comment

8 Comments & Questions

Commenter icon key: Subscriber Verified

Delete all emails supposedly from your bank, especially if you are not expecting a communication. If it's serious, they will write or phone.


Didn't take long for that website to be shut down. Pity, I was hoping to enter some fake data to annoy the scamming scum.


Don't be silly, there might be other malwares when you load that page into your browser.


How about banks or any financial institution revert to snail mail for all their customer communications, it will circumvent these philshing attempts and I am sure NZ Post will welcome the extra work.


Umm, a majority of identity theft is done by stealing "snail mail". With the data they collect on you via the post, the get access to certain things, change your details and hijack you. Snail mail is not the answer. Common sense is.


"Registed" is a giveaway too. Poor spelling, the trademark of the scammer. Unfortunately, fewer people are likely to notice that, these days.


If they can chase Dotcom to the ends of the earth. Why can the authorities not shut these criminals down?


Because it is only your real money, and not a copyright issue.


Post New comment or question

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

NZ Market Snapshot


Sym Price Change
USD 0.7740 -0.0003 -0.04%
AUD 0.9511 0.0005 0.05%
EUR 0.6324 -0.0002 -0.03%
GBP 0.4954 0.0001 0.02%
HKD 6.0039 0.0001 0.00%
JPY 92.5100 -0.0050 -0.01%


Commodity Price Change Time
Gold Index 1195.4 -2.890 2014-12-19T00:
Oil Brent 61.4 1.580 2014-12-19T00:
Oil Nymex 57.1 2.910 2014-12-19T00:
Silver Index 16.0 0.096 2014-12-19T00:


Symbol Open High Last %
NZX 50 5518.5 5545.0 5539.3 -0.21%
NASDAQ 4752.6 4782.1 4748.4 0.36%
DAX 9901.3 9901.3 9811.1 -0.25%
DJI 17778.0 17874.0 17778.2 0.15%
FTSE 6466.0 6566.9 6466.0 1.23%
HKSE 23158.3 23189.6 22832.2 1.25%
NI225 17511.0 17621.4 17210.0 2.39%