THE Commonwealth Bank is warning customers not to respond to a text message which instructs them to log into their accounts via a link provided as part of a phishing scam.
The messages have reportedly been delivered to hundreds of the bank’s customers in a series of hoax emails and SMS’ circulating throughout Australia.
Recipients were advised to “log into your account center (sic) for verifiacation (sic)” by using a link included in the hoax messages.
CommBank responded to online queries regarding the text messages.
“Yes this is a phishing text, where the sender is trying to get information on your banking,” a CommBank statement read.
“Please forward this text to hoax@cba.com.au the Security team can take it from there.
“So long as you have not entered your information then your accounts will be safe.”
A Commonwealth Bank spokesperson told news.com.au the organisation had been made aware of a particular scam targeting customers.
“We may post a warning on Facebook to help them stay vigilant,” the statement read.
“Security of our customers’ banking details is a top priority for the Commonwealth Bank.
“We invest in state of the art fraud prevention and detection technology and have a dedicated team who actively monitor unusual or suspicious activity.
“Unfortunately, scams — including SMS scams — and illegal activity may still occur from time to time.”
Earlier, the bank issued another statement which revealed it was “aware of a number of hoax emails and SMSs currently in circulation”.
“Remember, we’ll never send you anything that asks you to provide your NetBank client number, password, NetCode SMS, credit card details or send you an unexpected attachment,” it read.
“Hoaxes are becoming more sophisticated and can look very convincing.
“Please be sure to share this with any friends or relatives so they stay safe online.”
The fake CommBank text comes after ANZ customers were being advised to take extra caution after the discovery of a very convincing scam.
The fake ANZ Bank email advised recipients that their ‘last payment was unsuccessful’ and prompts them to login, where cyber criminals can steal their credentials.
Cyber security company MailGuard believed the scam email from August had already been sent to a very large number of inboxes.
“The email, from a display name of ANZ internet Banking and sender email address of customer.data@anz.com, claims that ANZ have been unable to contact you, and asks customers to click to update their phone number,” MailGuard warned in a blog post.
“When recipients click through they arrive on a well-crafted ANZ internet Banking landing page where they are prompted to login, so doing handing over their Customer Registration Number (CRN) and Password.”
ANZ said customers should delete the email immediately and contact the helpdesk immediately if they have clicked on any links or downloaded any attachments, responded to the hoax email, SMS or phone call with your banking details or noticed any unusual payments.
ncG1vNJzZmimlazAb6%2FOpmWarV%2BpsqS0zaijqJ%2BpZLyvuMinnGigkZi4qrrGaJqopZ2Xrq%2B3jKGmmrCVqHqjscKopKKml2K6sL7EZqqoqJiewLW1wpqrnpxfo7K4v4ysq6iqqWSup3%2BPbm5wnJGZhHmvl5qdnm2RaX2nr8BtcJ9rZph9eQ%3D%3D