Online Banking SMS Scam – That Collects Victims Login Credentials with Fake Websites

Australian and New Zealand users beware of SMS sent by the hacker and cyber criminals as they are sending SMS scam to the users that redirect a user to fake websites that look real like Australian banks.Beware Online Banking SMS Scam That Snares Victims With Fake Websites

Cyber hackers and criminals have become smart enough as they are making websites that look real like Australian bank. It actually looks similar to your bank’s online portal. An SMS phishing scam is on the rise and they are trapping users by redirecting them to fake websites that look legitimate and similar to those of real Australian Banks and thereafter they are collecting personal information and login credentials. So, let us know how it works.

How it Works?

A short scam text messages are sent to potential victims that contain links that look to be from legitimate banking organization, but actually, it is not from the legitimate banking institution. Clicking on the link redirects the users to the fake websites.

The above image that is the sample image provided by the Australia’s communications watchdog that tell how complicated the scam is. The banking site ANZ Internet Banking mobile page both real and fake are so much identical that it becomes almost very difficult to tell that which site is real and which one is fake. There is only one difference and the difference is in the URL, but this can be easily mistaken or overlooked by the normal users.

When victims visit the website then they can see two fields that ask for Customer Registration Number and a Password along with the Log-in button.

The Australian Communications and Media Authority have listed a number of fake URLs and most of them belong to legitimate online banking websites.

The alert has been already announced to all mobile phone users in both countries – Australia and New Zealand.

The banks that are likely to be in the target are ANZ, GE Money, National Australia Bank, Bendigo, Bank of Queensland, St George, Suncorp, Heritage and Macquarie. Beside this ACMA also informed that hackers or scammers are gradually targeting different banks. They also said that “It appears that the criminals behind this campaign are constantly refining their messages and the associated fake imitation banking websites to increase their chance of success”. They came to know about this scam when several users have started reporting it through ACMA’s SMS spam reporting number.

What Victims Should Do Now?

Customer those who believe that they might have clicked on the link that came in scam SMS and logged in by providing the log-in credentials at the fake website, they are advised to contacts their bank as soon as possible.

Tips You Should Follow to Stay Protected

In order to reduce the chances of becoming victims of this scam SMS or any other related phishing scam, you must follow the below-mentioned tips:

  • Never open SMS or emails that come from unknown sources (however opening such SMS or emails is not danger but clicking on the links or attachments included within are more dangerous)
  • Never click the hyperlinks that come within such messages or emails
  • When you visit the website, check the authenticity of that particular website that asks your log-in credentials. You must check that the URL starts with HTTPS.
  • If two-factor authentication is offered by websites then use it on your accounts.
  • Do not use the same username and passwords on any other websites that you use on the banking site. Always use different passwords for different sites.