Member log in

Email fraudsters get tricky with ANZ scam

Online scammers continue to get more sophisticated.

The below email appeared in the inbox of an NBR staffer.

The fake message is lent an air of authenticity by its inclusion of an actual ANZ phone number, and the sensible security option to visit a local branch.

NBR ONLINE forwarded the scam email to NetSafe executive director Martin Cocker, who says as a rule, the banks never send you an unsolicited link to the login via email.

Of this specific scam, Mr Cocker comments.

"The give-away in this email is the login url which has a Mexican domain. If you follow that link you get to a legitimate looking login screen. When you enter your details,  you then get diverted to the actual ANZ home page (www.anz.co.nz).

"To the user it looks like a simple failed login. Meanwhile the criminals bot will attempt to quickly login using the details you've just provided - and if it connects they will get to work relieving you of your money," he says.

"The use of NZ phone numbers is not unusual. It may simply be an IP phone number that diverts, or it could even be a legitimate phone number of the ANZ. It doesn't matter. They even handily advise you to to go to the branch and set up Internet Banking.  They're just looking for the percentage of people who might enter their bank login details." 

Comments and questions
8

Delete all emails supposedly from your bank, especially if you are not expecting a communication. If it's serious, they will write or phone.

Didn't take long for that website to be shut down. Pity, I was hoping to enter some fake data to annoy the scamming scum.

Don't be silly, there might be other malwares when you load that page into your browser.

How about banks or any financial institution revert to snail mail for all their customer communications, it will circumvent these philshing attempts and I am sure NZ Post will welcome the extra work.

Umm, a majority of identity theft is done by stealing "snail mail". With the data they collect on you via the post, the get access to certain things, change your details and hijack you. Snail mail is not the answer. Common sense is.

"Registed" is a giveaway too. Poor spelling, the trademark of the scammer. Unfortunately, fewer people are likely to notice that, these days.

If they can chase Dotcom to the ends of the earth. Why can the authorities not shut these criminals down?

Because it is only your real money, and not a copyright issue.