IMB and Your Security
At IMB the security of your personal and account information comes first. You may be aware that in the financial services sector there are a number of emerging scams and frauds. Working together we can better protect you against becoming a victim of these scams & frauds by doing the following:
- Providing a secure online environment.
- Keeping you up to date with emerging scams & frauds to enable you to recognise them if they occur.
- Giving you tips on what you can do to protect yourself against fraud.
- Providing the details of what to do if you think you have been targeted by fraudulent activity.
- Click here to download IMB's full Security Brochure
It is important to remember that IMB will never ask you to disclose your access code or send a request to you with a link to our internet banking system, requiring you to enter your member number and access code for verification purposes.
In the event that IMB needs to contact you, we will do so by telephone, mail or secure e-mail which can only be accessed once you have signed into internet banking.
Since developing an internet banking facility, IMB has continued to install robust firewall technology to ensure all information held by it is protected from any attempted external intrusion. All IMB security systems are constantly reviewed and updated to avoid unauthorised access to IMB's internal systems and to member information.
IMB has invested a significant amount of money, time and effort to ensure that members undertaking financial transactions over the internet, do so in a secure and user friendly environment. IMB's internet banking product utilises 128-bit digital certificate encryption technology and secure e-mail to protect members' account information when members undertake online banking. IMB is committed to ensuring that our members have the ability to view their account details and undertake financial transactions in a safe and secure environment.
IMB has adopted the ePayments Code and complies with other requirements relating to the confidentiality, storage and appropriate destruction of members' details and account information.
IMB is a member of the Australian Association of National Advertisers and the Australian Direct Marketing Association, and as part of these memberships, IMB has voluntarily adopted and acts in accordance with the respective Code of Ethics and privacy guidelines relating to advertising and marketing on the internet.
If you believe any unauthorised access has occurred, then please contact IMB on 133 462, 8am to 8pm, Monday to Friday.
At IMB we want to provide you with regular updates on frauds and scams to raise your awareness and help you avoid becoming a victim.
Some new types of fraud are beginning to emerge, which can potentially lead to compromise of your personal information and loss of funds. It is important to ensure that you are familiar with them and how they occur. Listed below are some of the most common types of fraud currently in use.
Recent fraud and scam alerts
|Fraud Type||What Occurs|
Mobile Phone Porting
Your mobile phone number is transferred to a new provider without your knowledge or authorisation, allowing the fraudster to intercept your SMS codes, used for authorisation of payments etc for internet banking.
You receive an email or SMS request, which looks like it has been sent from your financial institution, requesting your personal access codes, card details or account details.
Viruses and Trojans
Are embedded in your computer, again without your knowledge, usually because anti-virus software is not kept up to date or installed. These capture and log all activity on your computer which can lead to compromise of your personal details and access codes or can damage the performance of your computer.
We have provided a more detailed explanation below, of how each of these and other types of fraud can occur and encourage you to read this information.
If you think you have been a victim of fraud or something does not feel right, please contact IMB immediately on 133 462.
Types of Fraud & Scams
|Mobile Phone Porting|
There have been some recent media reports circulating in regard to a new type of fraud that is emerging, known as mobile phone porting, which targets mobile phone users. Fraudsters who compromise your Internet Banking access code may also transfer your mobile phone number to another telecommunications provider so that they can intercept the security codes that IMB forwards to you to authenticate your payments.
If your mobile phone service is suddenly disconnected or only allows 'SOS' (emergency) calls, then this could be a warning sign that your mobile phone has been transferred to another provider. You should contact your mobile phone provider immediately to confirm why your mobile phone is not working.
If you find that your mobile phone has been transferred to another provider without your authority, please contact IMB immediately on 133 462.
|Helping out a 'friend'|
Fraudsters may attempt to befriend you over the internet, typically via dating or similar friendship sites, with the express purpose of defrauding you or having you commit fraudulent activity on their behalf.
They often ask you for money to pay for flights to see you or to send funds to help pay for treatment/medicine for an illness.
In other instances, fraudsters will seek to have you assist them in opening bank accounts in your name so that you are able to provide them with the account details or transfer money on their behalf. You could also be committing fraud on their behalf.
If you are asked to open an account by someone you have befriended over the internet, then this is probably an indication that something may not be quite right and you should report the matter to IMB immediately on 133 462.
Phishing is when fraudsters trick you into providing personal information such as your passwords or account details, enabling them to gain access to your funds.
A few ways they may try are:
This type of fraud comes in many shapes and sizes. It can range from well organised scams to crude and poorly executed methods. Always make sure that any requests for your personal information, no matter how convincing the story may be, are genuine.
|Malicious software (Malware) and Spyware|
Quite often, the advertisements that 'pop-up' in a different browser window while you're on the web are not what they appear to be. They could be downloading 'spyware' or 'adware', which are programs used to monitor your internet activity and gather your user information which is usually for advertising use.
It is important that you have security software installed that detects and removes spyware.
|Viruses and Trojans|
These are harmful programs that are loaded onto your computer without your knowledge. They can damage the performance of your computers and flood you with advertising. More alarmingly, they're used to obtain information from your computer.
Trojans look like genuine applications and they embed themselves in your computer and monitor your activity; while viruses spread by infecting computers and then replicate.
|Fake Job Advertisements|
These scams target people looking for a new job and often promise large incomes for very little work. As the old saying goes, 'If it is too good to be true, it probably is'.
You can find out more information or report a scam or suspicious advertisement through the SCAMwatch website at www.scamwatch.gov.au
It’s imperative for all Australians to take the right steps to protect themselves and their family against online fraud, which can appear in various guises.
IMB takes all instances of fraud very seriously and have a range of security measures in place to protect members from fraud or identity theft, like 2-factor authentication. People need to educate themselves also to ensure they don’t fall victim to online fraud and scams at home.
Thousands of Australians fall victim to online fraud every year. It is estimated that one in 20 Australians will be caught by some kind of scam. It is also estimated that around two-thirds of consumer fraud now occurs online.
Online scams come in many different forms. Common online scams are phishing and spam emails, where emails claiming to be from a financial institution are sent to you, which will ask you to verify your account details and then the scammers will use those details to fraudulently obtain your money.
Scams can also occur when shopping online: Scammers can pretend to be selling a product - often at a low cost - just so they can steal your credit card or bank account details. Similarly, they may take your money but send you a faulty or worthless product instead—or even nothing at all.
Be aware of guarding your personal information – never provide your personal banking information if someone requests it and don’t respond to requests for money. Never give out your PIN, CARD number or password to anyone. Check all your debit and credit card statements thoroughly and destroy old bills and expired cards.
Do your homework: research the company you are buying from, their returns policy and contact details. Never enter your personal, credit card or online account information on a website that you are not certain is genuine.
If you come across a scam – report it to SCAMwatch, call 1300 795 995 or go to www.scamwatch.gov.au
- You should never divulge passwords for internet banking to others.
- You should ensure your computer has anti-virus, firewall and anti-spy software and keep it up to date
- You should never provide account information and passwords via email or SMS ; IMB will never ask for account information and passwords via email
- If your mobile phone is disconnected without notice, you should contact your phone provider immediately to ensure mobile phone porting has not occurred
- You should not undertake financial transactions for people befriended ONLY over the internet
- Report a scam or suspicious advertisement through the SCAMwatch website at www.scamwatch.gov.au
- Only log into IMB’s internet banking from www.imb.com.au or through IMB’s Mobile Banking application.
- Ensure that the padlock at the bottom of the screen is present before you enter your logon details
- Select a password that is difficult to guess and has no connection to you
- Never respond to an email that requests your account details and passwords. If this occurs you should advise IMB immediately and then delete the email
- Regularly change your password
- Regularly check your account transactions and report any unauthorised transactions immediately to IMB
- Notify IMB immediately if you believe your password has been compromised
- Avoid using computers at public places, such as Internet Cafes
- Refer to IMB’s web-site periodically for security updates and alerts
- Install smartphone and computer security software
- Never store passwords on or in your smartphone, computer or other access device
- Only use Wi-Fi hot spots that are reputable and password protected
- Utilise the lock capability on your mobile device when it is not in use
If you think you may have been a victim of fraud, please contact IMB immediately on 133 462. Even if something doesn’t feel right about a transaction or you receive an information request from people purporting to be from IMB, it is better to err on the side of caution and contact us.
URL shortening allows long website addresses to be displayed in a shortened form, allowing for more concise and professional looking communications with members. This is particularly true when using social media or other communication methods that have a character limit.
As an example, the IMB website would appear as follows:
IMB using bit.ly
To assist our members, IMB will now be using bit.ly’s url shortening service in some of our online communications.
Below are the rules for when we would use URL shortening.
- IMB will never use a URL shortening service to connect you directly to IMB’s internetbanking or mobilebanking sites
- IMB will use URL shorteners to direct you to landing pages on the www.imb.com.au or mobile.imb.com.au website. If you are being directed to a form, you will first arrive on an information page and not the form directly
- IMB will not use URL shorteners on IMB’s own website (with the exception being if we choose to create an informational page on the website to describe URL shortening to members)
|Call 133 462||Visit a branch||Ask us a question|