Stay safe from scams with Telstra's cyber security tips | Telstra

Search Engine Ad Scams

When sending a query to a search engine, like Google, it's sometimes the case that the first few links that you see are ads or sponsored links. In some cases, those ads can be malicious, and may be designed to try to trick you into visiting a scam website. Telstra is aware of a small number of these ads which falsely claim to represent Telstra, our customer service department, or other services we may provide. Visiting these links will take you to a website which may try to steal your personal or financial information. We recommend considering a reputatble ad blocker if your browser supports it. You can always contact Telstra via the MyTelstra app, which is the most secure way to get in touch with us if you have questions regarding your account. If you think you've seen a scam web ad that claims to be Telstra, you can let us know by sending the details to abuse@telstra.com.

Callback Scams (Email/Online/SMS)

This type of scam can appear in many different ways. You may receive an email which claims to be an invoice for a product you may never have purchased, and a phone number is provided to "dispute" the invoice amount. In other cases, it could be an SMS informing you of a change to your bank's PayID recipient list, or, letting you know about an unexpected bank charge. A telephone number is also provided for disputes. Never call a phone number that is provided as a way to dispute a charge in this manner. The scammers will try to trick you into providing your credit card details for a "refund", but, instead, they will make actual charges on your card. Telstra regularly reports these malicious telephone numbers to the carriers who are responsible for receiving the calls.

Fake “survey” or “prize” award

When visiting certain websites, a pop-up may appear notifying you of a prize of a new mobile phone or tablet, asking only that you fill out a survey, or pay a small amount for shipping. These are scams and not legitimate offers from Telstra. Note that this scam can also come as an email, or SMS. Telstra recommends using a reputable “ad blocker” for your web browser to minimise the impact of these scams.

Fake Bigpond or Telstra support services

Be wary of websites which claim to offer Bigpond or Telstra support services but are not affiliated with Telstra. There are many such sites out there, such as bigpond[.]numberXXXXralia[.]com or bigpondemailXXXp[.]com, aus-emailsuXXXrt[.]com, and none of them are approved by Telstra. Using these services may cost you considerably and put your personal information and computers at risk. Some of these scams are very similar to the Search Engine Ad Scams mentioned above. Be very careful when using tools like Google to look for ways to contact Telstra or other brands, as you may be given links to unofficial websites which may increase your chances of encountering a scam.

Fake job recruitment scams

Bogus job recruitment scams in which a job may be promised in exchange for personal details, identity documents, and so on. Many of the bogus recruiters may contact you via SMS, WhatsApp or through sites such as freelancer.com. Telstra does not make use of these services for these purposes and any offer of employment made through them is not authentic.

Cryptocurrency account scams

Cryptocurrency accounts represent an attractive target for scammers. Be wary of any email, message, or online advertisement which may try to convince you to create, or log in, to a cryptocurrency account. Never provide remote access to your computer to anyone who claims to want to enlist your support to “track hackers” by using your cryptocurrency account.

Terms of Use or Privacy Policy Acceptance Scam

This email scam informs recipients that Telstra has updated their Terms and Conditions, Privacy Policy, or other administrative document. To continue using their email address or account, they must formally accept these changes. The email includes a link to a malicious website. The scam's goal is to trick recipients into providing their username and password. Telstra occasionally updates its policies and may notify customers of these changes. However, we don't require you to click on links in emails or sign in to accept them. Be cautious of scams that impersonate legitimate email addresses, such as "noreply@" addresses, to deceive recipients. If you're unsure, contact our experts via our Report Misuse of Service form for further guidance.

Bonus Rewards Points email scam

In this scam email you may be offered a large number of rewards points for a loyalty program such as Telstra Plus. The scam can impersonate many different brands, but, usually offers a significant number of points as an enticement to click on a link and provide information such as your username or password. The point amounts can be anywhere from 10,000 to 100,000 (or even more). In some variations of the scam, there may be an additional encouragement to click to spend "expiring points". Also note that there are some versions of this scam which may be sent via SMS (see our SMS scam section for more information). We recommend that you avoid clicking on links in email messages and instead access rewards systems through the official app or website.

"Laryngitis" gift card scam

This email based scam may come from a name, or email address, that is familiar to you. The scam message may claim that the writer hasn't been feeling well, and possibly has laryngitis and is unable to speak. The writer asks for you to do them a favour and reply back. The scammer then will ask for online gift card purchases to be made for them, and for you to take pictures of the gift cards and send the pictures as a reply. Never trust emails, or other online messages, which ask you to make such a purchase and share the gift card details.

Malicious QR codes in scam emails

There has been a significant increase in the malicious use of QR codes to trick potential victims into visiting malicious websites. Scam emails claiming to be from the ATO, myGov, or other organisations may contain threats or warnings of financial or other penalties as a way to scare people into scanning and using the QR code. Be extremely cautious with QR codes and never visit links they may point to without first evaluating the link's destination in detail. Most mobile devices will display the link location first, and if it does not point to a known and trusted website you are familiar with, do not click.

"We have received complaints about your email account" scam

In this scam, an email is received which claims that Telstra has received a number of complaints about your email account sending viruses. The email has a link to a malicious website which claims to help you "scan for viruses", or, in some cases, to download (fake) anti-virus software. Whilst Telstra does notify our customers of security or Internet abuse issues, these scam emails contain a number of spelling and grammatical mistakes, are not personalised for the recipient, and also contain a noticeable mixture of peculiar colours and fonts in an HTML email. Telstra's Internet Abuse department would never send messages in such a fashion.

Your mailbox needs to be upgraded or is expiring scam

This scam email may claim that your "Classic" mailbox needs to be upgraded to an arbitrary version (like "12.9"), and for this upgrade to take place, you should click on a link to a malicious website. There may also be a warning about "signal interruption" if you do not click soon. There are many versions of this scam, but they all indicate that an upgrade is required. Be wary of any messages making such a claim.

Cancellation of your Telstra subscription email scam

This email scam will claim that your "nominated debit/credit card or bank account" failed for payment and to avoid disruption to your services you should visit a (malicious) website which is designed to gather your My Telstra username and password. Telstra recommends using the official My Telstra app whenever you wish to review your legitimate account details with us.

Fraudulent software invoice (refund) scam

This scam usually consists of two parts: A fraudulent invoice for a product or service (usually computer anti-virus software), and a telephone number provided to call to dispute the charges in the invoice. The goal of the criminal is to convince you to call the number they provide and enquire about the charges. They may claim to offer a refund and ask for your credit card information to provide the refund. Instead of giving you money back, the criminals will make large charges on your credit card, for which you may be held responsible. In some cases, this scam is combined with the “Fake Technical Support” scams mentioned above and scammers will attempt to gain control of your computer to obtain actual invoices or bills you may have saved, manipulate the contents, and send you the fake “new” invoice to pay. Note that there are versions of this scam which do not contain a phone number, and are more like standard "phishing" scams where the fake invoice contains a link to a malicious website which may try to steal your personal or financial information. Many of these scam emails will claim to be an urgent reminder for renewal of computer security software due to expire within days. 

“Your bill was paid twice” email scam

This is a very old email scam that returns every now and then. This scam claims that you accidentally paid your Telstra bill twice and are entitled to a refund. The email contains a link to a malicious website. If you are ever in question as to your Telstra bills or account, use the MyTelstra app or website to review the most recent status.

“Your AutoPay payment was unsuccessful” scam

In this email scam, a claim is made that Telstra was unable to process your last payment, and that a one-off payment is required to maintain services. The email contains a link to a malicious website and is often designed to gather your credit card information, or, other personal details.

Email Bill Overdue scam

This scam has many variations, but, contains a file attached which is an "HTML" or "ZIP" document, and usually has a name for the attachment such as "TRPB_1_K1702548545.html" or ends with ".zip". This document is a form of a phishing scam which, if opened, will appear in your web browser to look similar to a legitimate Telstra web page. The scam is designed to gather your personal information or username and password. Telstra does not send email bills as HTML or ZIP documents, so we would recommend deleting any email message which claims to be a Telstra bill and contains a document such as described here. You can always visit MyTelstra app or web to see the current status of your Telstra accounts and bills.

“Changes to Legal Agreements”

This email claims Telstra has made changes to legal agreements which apply to the recipient of the email.  The message requests that you visit a website to “agree” to the policy updates.  The email may threaten that if you do not click to “agree” that your account may be limited.  Whilst Telstra may update our policies from time to time, we do not ask that you click on any links to agree to changes.

"SMS OTP CODE"

An email claiming that the last bill was unable to be processed and that a new credit card number needs to be provided. Most versions of this scam may refer to an "SMS OTP CODE" (often in all capitals) as part of the scam. The email may also instruct you to “keep the window open”. You may see a “3D Secure” or “Verified by VISA” logo on the scam website. This scam targets your credit card number and tries to trick you into providing it to criminals. Some versions of this scam email may contain a website link that points to the LinkedIn service.

"Your last payment was declined"

This email claims that “an invalid billing associated” was detected on your account, and requests that you visit a malicious website which asks for personal or financial information. Variations on this scam have been around for over a decade, and some other recent examples are listed below.

Invoice “INT 1-[long number]” and “code 004” or “code 044” scam

An email scam that claims a credit card payment was not successful. It may include a reference to “code 004” or “044” and possibly a number like 1-22341284291 or 1-2234129558471 as an invoice reference number. A link to a malicious website is also included. Note that the “INT 1-“ number may change, but the message is still a scam.

Ransom email

This is an email based scam which attempts to extort the reader into paying a ransom in Bitcoin to prevent the release of sensitive information. In some versions of the scam, the “From” and “To” of the email may appear the same, which is a trick used by scammers. The scammer may claim to have access to a computer’s camera or sensitive files. This is a scam and Telstra does not recommend paying the ransom. For Bigpond/Telstra accounts, you can manage your password in MyTelstra and make sure it is strong and unique. 

"Unsuccessful Direct Debit"

This is a phishing email claiming that a payment failure by a financial institution requires a new credit or debit card to be provided. Email contains link to malicious websites. May also ask you to “Update Your Payment Method”

Fake “Overpayment” or “Refund Bill” notification

The email claims that an overpayment of 393.23 * 2 (638.46) was made, and that the recipient of the email is due a refund. The amounts may vary but will typically contain an amount and a multiplier (* 2). Email may be signed by a “Gerd Schenkel”. Contains a link to malicious website.

Business Email Compromise scams

We have recently noticed an increase in what’s referred to as a Business Email Compromise scam. These emails claim to be from senior people in a company and ask for money to be transferred urgently, or, to pay an urgent invoice.  

In some cases, they may request the purchase of electronic Gift Cards (such as iTunes, Netflix, Steam, or Google Play cards). Other versions of this scam include unexpected invoices with fraudulent “new banking details” being provided.

In some cases, criminals may also attempt to impersonate employees and ask for payroll departments to re-direct salary to bank accounts controlled by criminals. Telstra advises all customers to verify bank and payment information in invoices carefully and repeatedly, and to not accept requests for payment submitted via email without speaking to trusted individuals to confirm the request first.

Cryptocurrency Callback Scams

Callback Scams are scams where the SMS, email, or other form of contact is designed to trick you into making a phone call to a criminal, who will then try to deceive you and gain access to your online accounts, credit cards, or other information. In the Cryptocurrency Callback Scam, an SMS may arrive which impersonates a Cryptocurrency Exchange and informs you of a transaction or other account change. A phone number to challenge or dispute the transaction will be provided. Under no circumstances should you call a number provided to you in this manner. If you use Cryptocurrencies and have questions, reach out through the secure application or website for the exchange in question.

Loyalty Point scams

There are several versions of these scams, but they all claim to represent well known brands, such as Telstra, Coles, Flybuys, and others. The SMS may claim that you have loyalty points that are expiring, and you must take action to visit a website to redeem those points urgently. A malicious website address is provided. The malicious website may ask for your credit card, which will result in fraudulent charges being made against your card.

Parcel Delivery scams

These SMS scams often claim that there is a problem with the delivery of a package or parcel, and you are requested to visit a malicious website and provide personal or financial information in order to receive the parcel. Many of these messages do not mention any specific delivery company, while some may imply the message is from a well known brand. We advise you to be extremely cautious when considering clicking on anything your phone may display as a link in an SMS message. If you are expecting a parcel and are unsure about the legitimacy of an SMS, contact the delivery company via their official website, and do not use any links you see on your phone.

New Device or Payment Confirmation SMS scams

In this scam, you may receive an SMS which claims to be from an Australian bank informing you of either a “new device” being registered on your account, a new PayID/OSKO contact, or, a new payment being processed. For example: “FROM BANK: There has been a login attempted from a new device. If this was NOT you, please call us urgently on <scam phone number>” or “BANK: You have successfully scheduled a transaction of $799.99 to payee <name> on 18/11/22. If this was NOT you, urgently contact us on <scam phone number>”. Note that some versions of this scam may direct you to visit a malicious website. Many versions of this scam may target the PayPal brand with similar fraudulent payment notifications. Telstra’s SMS Scam Filter is regularly updated to help reduce this scam.

Fake road toll SMS scams

These scams claim to be a notification about an unpaid road toll. The messages may appear to be from organisations such as Linkt or EastLink, but many more simply claim that you have an urgent unpaid road toll that needs to be addressed. For example: “Linkt.:Your e-tag payment has been overdue on October to avoid fine charge please visit: <malicious website>”. Telstra advises to avoid clicking on these links and if you have any questions regarding any road tolls you may actually be responsible for to contact the appropriate organisation within your State or Territory. Telstra’s SMS Scam Filter is regularly updated to help reduce this scam.

Unexpected family member assistance SMS scam

This scam started out as a WhatsApp scam, but became more widely known as the “Hi Mum” or “Hi Dad” scam. An unknown person will make contact via SMS and claim to be a family member, and in need of urgent financial assistance, often claiming that their phone "fell in the loo" or met a similar fate. The scammer will try to encourage SMS recipients to contact them via WhatsApp, or, to bank transfer a sum of money to a BSB/Account number. In some versions of this scam, the scammer may pretend to make a telephone call to someone they are trying to scam. Nothing will be said during the call, but, instead, the scammer may claim the "line was scratchy" to disguise the fact that they are not a legitimate family member. Telstra’s SMS Scam Blocking capability has been helping to reduce the prevalence of this scam, but continued vigilance and awareness of this scam is recommended.

WhatsApp or iMessage related scams

Stay alert for suspicious employment or friendship offers which may be sent via SMS initially, but quickly want to change to a secure messaging systems such as WhatsApp or iMessage. The employment scams claim to offer up to $2000 per day and request that you get in touch with a “job agent” via WhatsApp. The friendship scams pretend to be women interested in getting to know you, and also request follow-up conversations via WhatsApp. Some of these scams may ask for your personal information (such as a passport or other identity documents) or cryptocurrency payments.

eBay/PayPal/Amazon fraudulent charge SMS

This SMS may claim that you have made a large payment for a new computer, phone, or other expensive item. A telephone number is provided for you to dispute the charge. These messages may contain what appears to be spelling errors. Do not call the telephone number provided in the SMS. An example message may appear similar to: “#Payment-Alert: You've paid A$2599.99 from your Bank Account info: PayPal TXN#401XVR15tq93 on 2021/11/11, If any Dispute, Dial us: < scam phone number > Thank you!!”

“Important” or “Urgent” messages from an Australian bank

“Urgent” messages that claim to be from an Australian bank and ask you to click on a link that is not a legitimate Australian Bank website. Many of these links end with suspicious Internet domains such as .xyz, .top, or other locations which are not authentic.