My Credit Union



At IMB the security of your personal and account information comes first. You may be aware that in the financial services sector there are a number of emerging scams and frauds. Working together we can better protect you against becoming a victim of these scams & frauds by doing the following:

It is important to remember that IMB will never ask you to disclose your access code or send a request to you with a link to our internet banking system, requiring you to enter your member number and access code for verification purposes.

In the event that IMB needs to contact you, we will do so by telephone, mail or secure e-mail which can only be accessed once you have signed into internet banking.

Providing a Secure Online Environment

Since developing an internet banking facility, IMB has continued to install robust firewall technology to ensure all information held by it is protected from any attempted external intrusion. All IMB security systems are constantly reviewed and updated to avoid unauthorised access to IMB's internal systems and to member information.

IMB has invested a significant amount of money, time and effort to ensure that members undertaking financial transactions over the internet, do so in a secure and user friendly environment. IMB's internet banking product utilises 128-bit digital certificate encryption technology and secure e-mail to protect members' account information when members undertake online banking. IMB is committed to ensuring that our members have the ability to view their account details and undertake financial transactions in a safe and secure environment.

IMB has adopted the ePayments Code and complies with other requirements relating to the confidentiality, storage and appropriate destruction of members' details and account information.

IMB is a member of the Australian Association of National Advertisers and the Australian Direct Marketing Association, and as part of these memberships, IMB has voluntarily adopted and acts in accordance with the respective Code of Ethics and privacy guidelines relating to advertising and marketing on the internet.

If you believe any unauthorised access has occurred, then please contact IMB on 133 462, 8am to 8pm, Monday to Friday.

Emerging scams & frauds

At IMB we want to provide you with regular updates on frauds and scams to raise your awareness and help you avoid becoming a victim.

Some new types of fraud are beginning to emerge, which can potentially lead to compromise of your personal information and loss of funds. It is important to ensure that you are familiar with them and how they occur. Listed below are some of the most common types of fraud currently in use.

Recent fraud and scam alerts

Fraud Type What Occurs

Mobile Phone Porting

Your mobile phone number is transferred to a new provider without your knowledge or authorisation, allowing the fraudster to intercept your SMS codes, used for authorisation of payments etc for internet banking.


You receive an email or SMS request, which looks like it has been sent from your financial institution, requesting your personal access codes, card details or account details.

Viruses and Trojans

Are embedded in your computer, again without your knowledge, usually because anti-virus software is not kept up to date or installed. These capture and log all activity on your computer which can lead to compromise of your personal details and access codes or can damage the performance of your computer.

We have provided a more detailed explanation below, of how each of these and other types of fraud can occur and encourage you to read this information.

If you think you have been a victim of fraud or something does not feel right, please contact IMB immediately on 133 462.

Types of Fraud & Scams

  Mobile Phone Porting

There have been some recent media reports circulating in regard to a new type of fraud that is emerging, known as mobile phone porting, which targets mobile phone users. Fraudsters who compromise your Internet Banking access code may also transfer your mobile phone number to another telecommunications provider so that they can intercept the security codes that IMB forwards to you to authenticate your payments.

If your mobile phone service is suddenly disconnected or only allows 'SOS' (emergency) calls, then this could be a warning sign that your mobile phone has been transferred to another provider. You should contact your mobile phone provider immediately to confirm why your mobile phone is not working.

If you find that your mobile phone has been transferred to another provider without your authority, please contact IMB immediately on 133 462.

  Helping out a 'friend'

Fraudsters may attempt to befriend you over the internet, typically via dating or similar friendship sites, with the express purpose of defrauding you or having you commit fraudulent activity on their behalf.

They often ask you for money to pay for flights to see you or to send funds to help pay for treatment/medicine for an illness.

In other instances, fraudsters will seek to have you assist them in opening bank accounts in your name so that you are able to provide them with the account details or transfer money on their behalf. You could also be committing fraud on their behalf.

If you are asked to open an account by someone you have befriended over the internet, then this is probably an indication that something may not be quite right and you should report the matter to IMB immediately on 133 462.


Phishing is when fraudsters trick you into providing personal information such as your passwords or account details, enabling them to gain access to your funds.

A few ways they may try are:

  • Email - Fraudsters may use authentic looking emails to request your personal details. IMB will never forward an email requesting your password, account details or other personal information nor will we send a link to the login page for Internet Banking. If you receive an email that you suspect has not been sent by IMB, do not click on any links and report it to IMB immediately on 133 462.
  • Over the Phone - Fraudsters may contact you by phone under the guise that they are from IMB and that there is a problem with your account security and require your account details and passwords to fix the problem. Again IMB will not contact you to ask for your passwords, or bank account details. If you have concerns in regard to the legitimacy of a phone call, then don't answer any questions and call IMB on 133 462 to speak with us directly.
  • By SMS - Scammers and fraudsters are now targeting your mobile phone by forwarding SMS messages, claiming to be from IMB, asking for your account/password details. IMB will never send an SMS requesting account or password information. If you receive an SMS message that you haven't requested or you have suspicions about, please contact IMB immediately on 133 462.
  Identity Theft

This type of fraud comes in many shapes and sizes. It can range from well organised scams to crude and poorly executed methods. Always make sure that any requests for your personal information, no matter how convincing the story may be, are genuine.

  Malicious software (Malware) and Spyware

Quite often, the advertisements that 'pop-up' in a different browser window while you're on the web are not what they appear to be. They could be downloading 'spyware' or 'adware', which are programs used to monitor your internet activity and gather your user information which is usually for advertising use.

It is important that you have security software installed that detects and removes spyware.

  Viruses and Trojans

These are harmful programs that are loaded onto your computer without your knowledge. They can damage the performance of your computers and flood you with advertising. More alarmingly, they're used to obtain information from your computer.

Trojans look like genuine applications and they embed themselves in your computer and monitor your activity; while viruses spread by infecting computers and then replicate.

  Fake Job Advertisements

These scams target people looking for a new job and often promise large incomes for very little work. As the old saying goes, 'If it is too good to be true, it probably is'.

You can find out more information or report a scam or suspicious advertisement through the SCAMwatch website at

  Online Scams

It’s imperative for all Australians to take the right steps to protect themselves and their family against online fraud, which can appear in various guises.

IMB takes all instances of fraud very seriously and have a range of security measures in place to protect members from fraud or identity theft, like 2-factor authentication. People need to educate themselves also to ensure they don’t fall victim to online fraud and scams at home.

Thousands of Australians fall victim to online fraud every year. It is estimated that one in 20 Australians will be caught by some kind of scam. It is also estimated that around two-thirds of consumer fraud now occurs online.

Online scams come in many different forms. Common online scams are phishing and spam emails, where emails claiming to be from a financial institution are sent to you, which will ask you to verify your account details and then the scammers will use those details to fraudulently obtain your money.

Scams can also occur when shopping online: Scammers can pretend to be selling a product - often at a low cost - just so they can steal your credit card or bank account details. Similarly, they may take your money but send you a faulty or worthless product instead—or even nothing at all.

Be aware of guarding your personal information – never provide your personal banking information if someone requests it and don’t respond to requests for money. Never give out your PIN, CARD number or password to anyone. Check all your debit and credit card statements thoroughly and destroy old bills and expired cards.

Do your homework: research the company you are buying from, their returns policy and contact details. Never enter your personal, credit card or online account information on a website that you are not certain is genuine.

Remember, IMB will NEVER ask you for your account details in an email or message. If you receive an email that you think is a scam, report it to SCAMwatch immediately at  or call 1300 795 995.

If you come across a scam – report it to SCAMwatch, call 1300 795 995 or go to

What can you do to protect against fraud?

What to do if you think you have been targeted by fraudulent activity

If you think you may have been a victim of fraud, please contact IMB immediately on 133 462. Even if something doesn’t feel right about a transaction or you receive an information request from people purporting to be from IMB, it is better to err on the side of caution and contact us.

URL shortening

URL shortening allows long website addresses to be displayed in a shortened form, allowing for more concise and professional looking communications with members. This is particularly true when using social media or other communication methods that have a character limit.

As an example, the IMB website would appear as follows:  =

IMB using

To assist our members, IMB will now be using’s url shortening service in some of our online communications.


Below are the rules for when we would use URL shortening.


23 September 2021
The number and frequency of scams is increasing. Here we detail the latest type of scams as they arise, so you can stay up to date.

Missed delivery, call or voicemail (‘Flubot’) scam

The ‘Flubot’ scam is a type of ‘phishing’ scam that was first reported in early August 2021. To date, the ACCC has received over 12,000 reports of the scam from the general public and IMB wants its members to be aware of how this scam works. The scam uses text messages (SMS) to download malware onto your phone, and in particular affects Android phones, although iPhones are also targeted.

You receive a text message about voicemails, missed calls or, more recently, parcel deliveries from Australia Post, DHL or another reputable organisation. All messages will contain a link and instruct you to click the link or download an app to check a voicemail, track a parcel, schedule a delivery time etc.

If you click the link and download the app presented, the phone will be infected with malware.

Once installed, the application is able to read and send text messages, make calls, access contacts and read passwords and sign-in details which may ultimately lead to cyber-criminals stealing from your bank accounts.

Find out more

What are Remote Access Scams?

Unlike hacking scenarios, which will usually occur without your direct involvement or prior knowledge, Remote Access Scams (also known as Technical Support Scams) involve a scammer contacting you directly to deceive you into giving them access to your device and personal data over the phone, through email or text or through pop-ups and chat functions on the internet.

The fraudster will try to convince you to give them to access your computer by downloading remote desktop software and providing them with other personal data such as passwords and authentication codes.

Scammers usually pose as someone from a well-known and reputable organisation, such as a bank, a telecommunications provider, a government agency or even the police. They often play on their position of trust or may use fear and intimidation tactics to obtain your co-operation.

Find out more

As the holiday season approaches, IMB would like to remind our members to be aware of potential scams and attempts to obtain card or personal information with the intent to use it for fraudulent purposes.

If you are holidaying outside of Australia, please ensure that you are aware of where your Visa card is at all times.  If using an ATM overseas, check the ATM carefully and ensure that you shield the PIN pad when entering your PIN.  IMB is aware of some instances where cards are retained by the ATM, then retrieved and used by fraudsters.  Should your card be retained by any ATM, please contact IMB immediately to stop your card and prevent fraudulent use of the card.

It is also recommended that you monitor your account balances via Internet Banking regularly to ensure that there are no unauthorised transactions on your account as a result of your card details becoming compromised, particularly, if you have been using overseas ATMs.

The number of scams and phishing attempts being circulated to financial institution customers is increasing.  IMB would like to remind our members to be aware of emails or SMS messages asking members to Log In and update membership, card or internet banking log-in information.

Unsolicited phone calls from people purporting to be from Microsoft, Insurance Companies, the Australian Tax Office or other government agencies advising that your computer has a virus, you have experienced a car accident or that you might be entitled to a refund of tax or fees are also being reported regularly to IMB.  These calls are from fraudsters who are attempting to obtain your card details so that they can perform fraud on your account.

It is important to remember that IMB will never contact you and ask you to disclose your access codes or passwords or send a request to you with a link to any of our banking systems, requiring you to enter your member number and access code for verification purposes

Members who receive emails or SMS messages are advised to not click on any links provided and delete them. If you have clicked on the links and/or information has been provided or you have provided card details as a result of a phone call to fix your computer or receive a refund, you should contact IMB immediately for further assistance. 

Often the emails, SMS messages or phone calls claim to be from legitimate companies including financial institutions and are always requesting passwords, login details or card details. Often emails and SMS messages will also use links and/or attachments to direct you to false sites or download viruses or trojans to your computer or mobile device.

Some common ways to detect these types of emails include:

What can you do to protect against fraud?



From time to time, IMB may communicate to you via email. It’s important to remember that:

If at any time, you are unsure of an email you receive from IMB, please call us on 133 462.


iconAsk a QuestioniconVisit a BranchiconCall 133 462