Websites impersonating Macquarie Bank’s online banking login page have been identified in the form of ads displayed in search engine results.
This is a common form of phishing scam where fake websites are created to look like an organisation’s login page to mislead customers into sharing their confidential information such as their login details or passwords.
These phishing websites ask for a customer’s Macquarie ID, password, one time passcode, and card details, which are then used to make fraudulent account and card transactions.
In this instance, fraudsters pay for these ads to show up in the top search results, which misleads customers into believing the search result is genuine. After clicking the link, the customer is automatically redirected to a fake website, where they’re at risk of having their personal and financial information captured and compromised.
What to look out for
Check for misspelled words in the advertisement URL and avoid clicking on the advertisement, even if it appears in the top search result.
You can see an example below of a phishing advertisement.
What to do
Never click on any links that take you directly to a Macquarie online banking login page.
Type macquarie.com.au into your browser and click on the login button on the page to log into online banking instead of through internet searches or links.
If you've been impacted by this phishing advertisement, please email firstname.lastname@example.org immediately.