Skip to Content, Features, Homepage

Online Services

Login to:
go
Apply for:
go
Go to:
go
Site Search
go
 

Security Update

Your path: Home > Security Update

If you ever suspect any unusual activity when using Heritage Online, we would encourage you to call our Contact Centre on 131422 (8:30 am - 7 pm Mon-Sat), or via e-mail to fraudalert@hbs.net.au.

Security Alert: January 2010

Recently there have been further instances of bogus emails, purporting to come from Heritage, and asking the recipient to go to a website designed to capture personal security details or compromise their computer. The emails appear very similar to those shown in the October 2009 and November 2009 alerts shown below.

Security Alert: November 2009

Recently there have been instances of bogus emails, purporting to come from Heritage, and asking the recipient to go to a website designed to capture personal security details or compromise their computer (a link to which is provided in the email). 

Those who unsuspectingly obey any instructions given in the email or on the linked website may later discover that their details have been used to access their Heritage Online accounts. 

The email in question is NOT from Heritage Building Society. If you have received a copy, could you please forward it to us at fraudalert@hbs.net.au. If you have actually followed the instructions in the bogus email, it is possible that your internet banking details and any other details may have been compromised – you should immediately change ALL your Heritage Online passwords, and also telephone Heritage Building Society immediately on 13 14 22 (8:30 am - 7 pm Mon-Sat).

A sample of the bogus email is shown below.

REMEMBER: While Heritage may send informational or confirmatory receipt emails, Heritage will NEVER send an email that would request the disclosure of any personal security details such as your PIN, Internet Banking Passwords, Credit Card details or require you to click on links or attachments within the email to update or verify details.


Security Alert: October 2009

Recently there have been instances of bogus emails, purporting to come from Heritage, and asking the recipient to go to a website (a link to which is provided in the e-mail) and key in his/her Internet Banking id and passwords. The website address in question is very similar to the legitimate Heritage Online website.

Members who click on the link are taken to the bogus (“ghost”) website and prompted for login details and passwords, Pay anyone Passwords, Email address and Email access password. Those who unsuspectingly obey these instructions may later discover that these details have been used to access their Heritage Online accounts. Sometimes this particular site also goes on to ask for credit card details to supposedly ‘unlock’ your account. This is also bogus and designed to capture these details.

The emails in question is NOT from Heritage Building Society. If you have received a copy, could you please forward it to us at fraudalert@hbs.net.au. If you have actually followed the instructions in the bogus email, it is possible that your internet banking details and Credit Card details may have been compromised – you should immediately change ALL your Heritage Online passwords, and also telephone Heritage Building Society immediately on 13 14 22 (8:30 am - 7 pm Mon-Sat).

A sample of two of the bogus emails are shown below.

Hoax Email Sample

REMEMBER: While Heritage may send informational or confirmatory receipt emails, Heritage will NEVER send an email that would request the disclosure of any personal security details such as your PIN, Internet Banking Passwords, Credit Card details or require you to click on links or attachments within the email to update or verify details.


Vishing Security Warning: July 2009

Recently, there has been an increase in fraudulent activity targeting financial institutions in the form of "Vishing".

Recent examples of such activity include unsolicited telephone calls, requesting people to enter their credit card and PIN number to reactivate their card or update their account details. The Society does not use this sort of call to members to update information. Should you receive such a call you should just hang up without providing any information and contact Heritage on 13 14 22 or via email to fraudalert@hbs.net.au .

Further information about Vishing can be found on the Australian Securities and Investment Commission government website at:
http://www.fido.gov.au/fido/fido.nsf/byheadline/Vishing?openDocument

REMEMBER: While Heritage may send informational or confirmatory receipt emails, Heritage will NEVER send an email or make a phone call that would request the disclosure of any personal security details such as your PIN, Internet Banking Passwords, Credit Card details or require you to click on links or attachments within the email to update or verify details.

Security Alert: October 2008

Recently there have been instances of bogus emails, purporting to come from Heritage, and asking the recipient to go to a website (a link to which is provided in the e-mail) and key in his/her Internet Banking id and passwords. The website address in question is very similar to the legitimate Heritage Online website.

Members who click on the link are taken to the bogus (“ghost”) website and prompted for login details and passwords. Those who unsuspectingly obey these instructions may later discover that these details have been used to access their Heritage Online accounts.

The email in question is NOT from Heritage Building Society. If you have received a copy, could you please forward it to us at fraudalert@hbs.net.au. If you have actually followed the instructions in the bogus email, it is possible that your internet banking details may have been compromised – you should immediately change ALL your Heritage Online passwords, and also telephone Heritage Building Society immediately on 13 14 22 (8:30 am - 7 pm Mon-Sat).

Samples of the bogus emails are shown below.





  

REMEMBER: While Heritage may send informational or confirmatory receipt emails, Heritage will NEVER send an email that would request the disclosure of any personal security details such as your PIN, Internet Banking Passwords, Credit Card details or require you to click on links or attachments within the email to update or verify details.

Security Alert: September 2008

There has lately been an increase in virus-type activity targeting financial institutions. Heritage Building Society is therefore advising members to take extra precautions when conducting Internet Banking activities.

Recent examples of such fraudulent activity include prompting for "Pay Anyone" passwords at unexpected points where not usually requested - for example, at login.

As an extra level of security, members are encouraged to ensure they have a valid email address loaded on their internet banking records. (You can use the "Change Email Address" option in the "Member" menu to do this.) An up-to-date email address greatly assists with the early detection of any invalid transactions. Heritage Online will send you an email to verify that certain significant actions have occurred on your account. This includes things such as BPAY, funds transfers, addition of a new scheduled transfer, change of email address etc. If you ever receive one of these confirmation emails without having personally done the transaction it is referring to, please change your passwords and call our Contact Centre on 13 14 22 (8:30 am - 7 pm Mon-Sat).

View our On-line Security Tips

Site Information

© Heritage Building Society 2010 | Accessibility Statement | Privacy Policy | Site Disclaimer | Site Map | Call 13 14 22