A Web site passing off as the ANZ Bank’s official site was closed down by Australian and US police Friday morning following an email scam asking ANZ customers to reactivate their online accounts.
The same scam has also targeted Westpac customers, with emails similar to those purporting to be from ANZ, leading Westpac customers to a hoax Westpac site (http://d308902.website29.ebizdns.com/login.htm).
ANZ bank spokesperson Paul Edwards said the hoax ANZ Web site, hosted in the US, was closed down at about 11:30am AEST. Edwards said the corresponding email was similar to a scam that targeted ANZ in April. The Web site also had the same host, he said.
The hoax email claims ANZ has issued a "security update" and users must log in to reactivate their account.
The email reads: “Dear valued customer, our new security system will help you to avoid frequently fraud (sic) transactions and to keep your deposited funds in safety. Due to (sic) technical update we recommend you to re-activate your account.”
The email provides users with a link to http://18.104.22.168/default_index.html, which before being closed down, was similar to ANZ’s Web site. However, the link appears as http://www.anz.com/index.html in emails that are html-enabled.
“When the link in the email is clicked on, a false ANZ homepage appears that contains a series of numbers in the URL address bar, instead of http://www.anz.com/,” said a statement on the ANZ Web site.
ANZ was unaware of any unauthorised access to customer accounts “at this stage”, said Edwards.
Customers who contacted ANZ with concerns about the scam had their passwords reset and accounts monitored, he said.
Affected ANZ customers should call ANZ’s Internet Banking Help Desk on 13 33 50.