Security alerts

When ASB becomes the target of an email phishing scam, it means scam emails have been sent to a potentially large number of people, and have reached the inbox of ASB customers (as well as non customers). These emails were not authorised by ASB.

If you think you’ve been targeted by an online or phone scam, please call us on 0800 327 863. We take security extremely seriously and will do everything we can to help.

ASB, ASB Securities, BankDirect or any of the companies in the ASB Group, will never ask you by email for your secure banking information (account or credit card details, password, PIN number or NetCode details) or ask you to login to your account from an email.

ASB will always ask you to login through our website and you should do so by typing www.asb.co.nz directly into your browser address bar.

If you have received an email and are in doubt about it, please feel free to email it through to us at phishing@asb.co.nz.

If you have been sent these emails and acted upon them, or if in doubt, please call us on 0800 327 863 to have your Internet banking password reset immediately.

ASB is committed to keeping our customers up to date with security threats facing online financial services, and you can read about precautions ASB takes, as well as tips for how you as a customer can protect yourself online.

Current examples

Some current examples of phishing email scams that have targeted ASB.

01 December 2016

Subject: New Security Message Alert

25 November 2016

Subject: You have a new message

08 November 2016

Subject: You have a new message

31 October 2016

Subject: You have a new message

17 August 2016

Subject: New Message From ASB Bank Limited

16 July - 5 August 2016

Subject: New Message Notification

1 July 2016

Subject: You have a new message!

27 June 2016

Subject: You have a new message!

7-15 June 2016

Subject: You have a new message!

9-18 May 2016

Subject: Important message

31 March 2016

Google search phrase: ASB


Important information for customers using Android devices who may have been exposed to Trojan malware.

11 March 2016

If you have an Android smartphone or tablet and have downloaded an app from a non-trusted source which asked to overwrite your administrator permissions, we recommend you take the following steps:
Decommission administrator rights for the app by going to Settings > Security > Device administrators > Flash Player > Deactivate.

Uninstall the malware app in Settings -> Apps/Application manager -> Flash Player -> Uninstall.

Remember, only install apps from trusted Android app stores like Google Play, and review permissions for all apps you install.

We also recommend avoiding installing apps from any links or pop ups - always go to the trusted source to install any apps. You can prevent installations from unknown sources using the setting in Security > Device administration.

Our monitoring and detection systems have not seen any increase in threats to our customers as a result of these reports. 

Banking with ASB Security alerts