• Home /
  • Protecting yourself against scams and phishing
  • Home /
  • Protecting yourself against scams and phishing

Protecting yourself against scams and phishing. What you need to know.

terms and condition page


In an increasingly connected world, scams and phishing attempts are becoming more sophisticated and more frequent. Knowing how to identify them – and what to do if you receive one – is one of the most important steps you can take to protect your personal information and financial wellbeing.

What are scam calls and phishing?

Scam calls and phishing is when a scammer impersonates a trusted organisation, such as a bank, government agency or financial services company, to trick you into revealing personal information such as passwords, account numbers or identity documents. These attempts can arrive via email, text message, phone call or even social media.

Scammers are skilled at making their communications look legitimate. They may use official-looking logos, familiar language, and even replicate the email addresses or phone numbers of organisations you trust.

How to spot a scam

There are several warning signs to look out for:

  • Urgency: Scammers often create a sense of panic, urging you to act immediately or risk losing access to your account.
  • Unsolicited contact: Be cautious of unexpected emails, calls or messages, even if they appear to come from a known organisation.
  • Requests for passwords: Legitimate organisations will never ask for your password, or PIN via email or phone.
  • Unfamiliar links: Hover over any link before clicking to check where it actually leads; if it looks unusual, do not click.
  • Poor spelling or grammar: While scammers are becoming more sophisticated, many communications still contain errors that signal something is not right.
  • Too good to be true:  if an offer or outcome seems unlikely, it probably is.

Steps you can take to protect yourself

There are some steps you can take to help protect yourself against these scams. We recommend you take the following steps:

  • Be aware of email, telephone and text-based scams: Do not share your personal information with anyone unless you are confident about who you are sharing it with.
  • Check web address or URL: When on a webpage asking for your login credentials, take note of the web address or URL ('Uniform Resource Locator'). The URL is located in the address bar of your web browser and typically starts with https://.

If you are suspicious of the URL, do not provide your login details. Contact the organisation through the usual channels to ensure you are logging into the correct web page.

  • Enable multi-factor authentication: Add an extra layer of security to your accounts wherever possible for your online accounts, including your email, banking, and social media accounts.
  • Check your accounts regularly: Monitor your statements and account activity for anything unusual. If you notice anything suspicious, contact your bank or financial institution immediately. Most Australian banks have dedicated fraud lines available 24/7.
  • Ensure you have up-to-date anti-virus software installed: For any device you use to access your online accounts.
  • Check the strength of your passwords: Review your current passwords and ensure they are strong, unique and not reused across multiple accounts. Avoid using easily guessable information such as birthdays or names. You can also check if your passwords have been involved in any data breaches on the NSW Government password checker website https://www.nsw.gov.au/id-support-nsw/passwords

This tool can be used by all Australians and is not restricted to those living in New South Wales.

  • Reset your passwords: If you have any concerns about the security of your accounts, reset your passwords immediately and consider using a password manager to keep track of them securely.
  • Follow the Australian Competition and Consumer Commission's Scamwatch guidance for protecting yourself from scams here: https://www.scamwatch.gov.au/get-help/protect-yourself-from-scams/

For more information, you can visit the Australian Information Commissioner’s tips for further guidance about protecting your identity: https://www.oaic.gov.au/privacy/your-privacy-rights/tips-to-protect-your-privacy/

Protecting your bank account and financial details

Your BSB and account number alone are generally not enough for someone to access your funds. However, when combined with other personal information, they can be used for fraudulent purposes. Here is what you can do:

  • Contact your bank or financial institution directly if you are concerned your details may have been compromised.
  • Ask your bank about placing additional security measures or alerts on your account.
  • Monitor your statements closely for any transactions you do not recognise, no matter how small.
  • Never share your full account details, BSB or internet banking credentials in response to an unsolicited request.

If you believe your account has been compromised, contact your bank immediately and request a fraud hold if necessary.

Where to get help

If you believe you have been the victim of a scam or your personal information has been compromised, the following resources are available to you:

  • IDCARE: Australia's national identity and cyber support service: idcare.org or 1800 595 160
  • Australian Cyber Security Centre: cyber.gov.au
  • Scamwatch: scamwatch.gov.au
  • Australian Financial Crimes Exchange: afcx.com.au

If you have any concerns about your Generation Life account or have received suspicious correspondence, please do not hesitate to contact our dedicated support team at support@genlife.com.au or 1300 420 229.

END