Security alerts archive - 2016

When ASB becomes a phishing campaign target, it means scam emails pretending to come from us have been sent to a large number of people, including ASB customers. These emails are not from ASB, or in any way authorised by us.

If you think you’ve been targeted by an online or phone scam, please call us on 0800 327 863. We take security seriously and will do everything we can to help.

No company in the ASB Group will ever ask you by email for your secure banking information. That includes account or credit card numbers, passwords, PIN numbers or Netcode details.

Phishing emails often give you a link that directs you to an online banking log in page. While ASB might advise logging in to an account to complete an action, we will never give you a direct link to the log in page. Instead, we'll encourage you to type www.asb.co.nz directly into your browser and log in from there. To make our page easily and quickly accessilble, it's good practice to save it as a bookmark.

If you have received a suspicious email, please forward it to our dedicated email scam team on phishing@asb.co.nz.

If you've already clicked a link in a suspicious email, or if in doubt, please call us on 0800 327 863 and we will immediately reset your internet banking password. You can also reset it yourself through FastNet internet banking or the mobile app.

We're committed to keeping you up-to-date with security threats facing online financial services. Find out more about the precautions we take, as well as tips for how you as a customer can protect yourself online.

2016 examples

Examples of phishing email scams that targeted ASB in 2016.

28 December 2016

Subject: You have a new message

19 December 2016

Subject: New message notification

01 December 2016

Subject: New Security Message Alert

25 November 2016

Subject: You have a new message

08 November 2016

Subject: You have a new message

31 October 2016

Subject: You have a new message

17 August 2016

Subject: New Message From ASB Bank Limited

16 July - 5 August 2016

Subject: New Message Notification

1 July 2016

Subject: You have a new message!

27 June 2016

Subject: You have a new message!

7-15 June 2016

Subject: You have a new message!

9-18 May 2016

Subject: Important message

31 March 2016

Google search phrase: ASB


Important information for customers using Android devices who may have been exposed to Trojan malware.

11 March 2016

If you have an Android smartphone or tablet and have downloaded an app from a non-trusted source which asked to overwrite your administrator permissions, we recommend you take the following steps:
Decommission administrator rights for the app by going to Settings > Security > Device administrators > Flash Player > Deactivate.

Uninstall the malware app in Settings -> Apps/Application manager -> Flash Player -> Uninstall.

Remember, only install apps from trusted Android app stores like Google Play, and review permissions for all apps you install.

We also recommend avoiding installing apps from any links or pop ups - always go to the trusted source to install any apps. You can prevent installations from unknown sources using the setting in Security > Device administration.

Note that our monitoring and detection systems have not seen any increase in threats to our customers as a result of these reports.

Security alertsSecurity alerts 2016