Australia Post Phishing Scam

IDCARE has received many reports about a phishing text message appearing to come from Australia Post claiming receivers are the winner of a prize. It often appears in the same message stream as your legitimate Australia Post messages as scammers can ‘spoof’ their phone number. If you have responded with your personal information you will need to contact your bank as soon as possible (more below). We also suggest running anti-virus through your phone in case the link contained malicious software.

Australia Post has also posted the following details in relation to the issue under their Scam Alerts section.

Financial Institution:

If you have provided banking details (especially Credit/Debit card number) it is recommend you contact your financial institution immediately to let them know. Also request to have tighter security on your account i.e. add a security question only you would know the answer to, or a new PIN, etc. It is also recommended to change your passwords, ensuring they are strong and individual, after you have updated and run anti-virus software on your device.

Spoofing:

This type of technology allows a caller to masquerade as someone else by falsifying the number that appears on the recipients caller ID display or in text messages. Caller ID Spoofing does not utilitse the real phone numbers service provider, it simply tricks call/message recipients handsets into thinking the call they are receiving is coming from the official organisation.

Device recommendations:

‍Run your anti-virus through the device you opened the message on. If you do not have anti-virus you may want to consider doing a factory reset on your phone.

How can I mitigate phishing risks?

IDCARE recommends that individuals:

Be very vigilant about emails, telephone calls and SMS messaging received. Be cautious of clicking on links or attachments you are not expecting and do your own research and explore alternative contact methods for the sender. When requests for personal information are made, it is always best to disconnect (where relevant) and contact the organisation directly on a number you have sourced yourself.
Check the email address to see whether it is an email address the sender uses. Good organisations don’t contact you and ask you to “prove” who you are.
Ensure you have anti-virus on all of your Internet enabled devices (including your phone).
Change your email password after you have run an anti-virus scan on your device.
If after reading this response plan you feel you need further support please contact IDCARE via the link below.

BACK TO LATEST NEWS

Other News

IDCARE is always active in the media from radio to TV, social media and news articles. Keep up to date with what's happening at IDCARE and in the media.

This Is What You Need To Know About Cookies

And we take a look at WeChat

Stay Smart Online Week

Identity & Cyber Crime Impacts on the Australian Community and Current Scams

When your private photos are stolen for profit

The case against Clearview AI and facial recognition technology

Blackmail Scams

Blackmail emails are a popular way for criminals to make money.

CONTACT US

IDCARE is here to provide you with specialist support and guidance when faced with a cyber and identity related issue. Contact one of our Identity & Cyber Security Case Managers to learn more about our Support Services and how we can help you.