A Web site passing off as the ANZ bank’s official site was closed down by Australian and US police this morning following an e-mail scam asking ANZ customers to reactivate their online accounts.
The same scam has also targeted Westpac customers, with e-mails similar to those purporting to be from ANZ, leading Westpac customers to a hoax Westpac site (http://d308902.website29.ebizdns.com/login.htm). The hoax Westpac site was still online at 3:20pm AEST.
ANZ bank spokesperson Paul Edwards said the hoax ANZ Web site, hosted in the US, was closed down at about 11:30am AEST. Edwards said the corresponding e-mail was similar to the scam that targeted ANZ in April. The Web site also had the same host, he said.
The hoax ANZ e-mail claims ANZ has issued a ‘security update’ and users must login to reactivate their account.
The e-mail reads: “Dear Valued Customer, Our new security system will help you to avoid frequently fraud (sic) transactions and to keep your deposited funds in safety. Due to (sic) technical update we recommend you to reactivate your account.”
The e-mail provides users with a link to http://22.214.171.124/default_index.html, which before being closed down, was similar to ANZ’s Web site. However, the link appears as http://www.anz.com/index.html in e-mails that are HTML enabled.
“When the link in the email is clicked on, a false ANZ homepage appears that contains a series of numbers in the URL address bar, instead of http://www.anz.com/,” said a statement on the ANZ Web site today.
ANZ was unaware of any unauthorised access to customer accounts “at this stage”, said Edwards.
Customers who contacted ANZ with concerns about the scam had their passwords reset and accounts monitored, he said.
Affected ANZ customers should call ANZ’s Internet Banking Help Desk on 13 33 50.