ANZ Fraud Team phone impersonation scam

August and October 2023

Scammers impersonating ANZ bank staff or the ANZ fraud team are asking customers to do one or more of the following:

  • Reset internet banking passwords and confirm what the new password is
  • Download software to gain access to your device
  • Send funds to a 'secure' account either in their own name or a third party name
  • Give them your two-factor authentication code(s) purportedly to protect your accounts and to stop transactions
  • Disclose their phone banking PIN.

ANZ will never ask you to take any of these actions.

Tips to stay safe

Never provide your customer number, two-factor authentication code(s), phone banking PIN or personal banking information to anyone, or grant anyone remote access to your devices – hang up on the calls where you are asked for this information. 

Two-factor authentication codes are an important layer of protection. Scammers will often say they need a two-factor authentication code for one thing, e.g. to reverse a transaction, but if you read the actual two-factor authentication code text message from ANZ carefully it will indicate it is for something completely different. Two-factor authentication codes are never required to reverse fraud transactions – hang up on calls immediately where you are asked for this information. 

Always contact ANZ via a phone number or other contact method listed on our website if you want to check the legitimacy of the contact.

We believe these calls may have originated from a phishing email or SMS – remember, if you receive an unexpected or suspicious text message or email, never click on any links or download any attachments in it.

Never provide or confirm your credit card details, Internet Banking login details, or two-factor authentication codes, through a link in an email or text message, or in response to a phone call you’ve received out of the blue.

How do you know if it’s really ANZ

Our fraud team may call customers from time to time to verify unusual transactions like these. However, we will never ask you:

  • For your banking passwords, PINs, or two-factor authentication codes
  • For your credit card details
  • To transfer money to a 'safe' account, purchase gift cards or to set up crypto currency accounts
  • To download software or remotely access into your device.