Common types of scams

Scams are deliberately designed to deceive you. Remember, if it sounds too good to be true, it probably is.

SMS & email scams

Messages might include a link to direct you to a fraudulent website or ask you for personal information.

See the latest SMShing & phishing scams

Online shopping scams

What might look like a genuine website selling goods at low prices could actually be a scam.

Learn about shopping scams

Remote access scams

Where a scammer calls you and attempts to obtain access to your accounts or device, pretending to be from a well-known company.

Learn about remote access scams

Romance & dating scams

Where someone you meet online may not be who they claim to be, and set out to steal your heart in order to defraud you.

More about romance scams

Job scams

Where a job opportunity appears to require little effort for a high financial reward and promises to make you money quickly.

Learn about job scams

Investment scams

When a money making opportunity seem too good to be true.

See more about investment scams

Scams that target businesses

Learn about the main types of scams your staff need to be able to recognise to protect your business.

Learn about business scams

Threat and penalty scams

Where a scammer uses threats of penalty or harm to extort money from their victims.

Learn about threat and penalty scams

3 ways to stay safe

    1. Pause
      Take some time to think about whether the request for payment is genuine.
      Remember: a genuine company or government department will never pressure you to make a payment.

    2. Review
      Google the person or company you’re about to pay and look for any reviews or experiences that others may have had.

    3. Reflect
      Talk to someone you trust and get their opinion.
      If the payment is part of a scam, there’s very little chance you’ll get the money back.

     

Protecting yourself from SMS & email scams

  • What to look for

    We will never send you an email or SMS asking for banking information like your NetBank Client ID, password, or NetCode; or include a link to login directly from the email or SMS. Always type commbank.com.au into a browser or use the CommBank app to securely access your banking.

    You can reduce your risk of being scammed by paying close attention to messages or emails that:

    • Aren't quite right. Scammers may use similar email addresses (e.g. @combank.com) and copy the look and feel of official messages to trick you into thinking a message is legitimate
    • Have spelling mistakes and incorrect grammar
    • Include an urgent call to action, such as asking you to unlock or verify an account, or log on and pay a traffic infringement notice. They might also contain malicious software (also known as malware) designed to infect your machine and steal data over time
  • How to check if a message is legitimate

    • When contacted by an unsolicited third party, it's better to be over-cautious. Contact the organisation directly using a phone number from their website (not the email or message) before you reply
    • Hover your mouse over a link to see the destination URL (web address), before clicking it. On a smartphone you can press and hold a link to inspect it. Carefully read these URLs, as they’re often created to look similar to legitimate addresses
    • Be suspicious of any correspondence received from overseas, especially if you're being asked to forward money or you're told you've won a prize
    • Never open an attachment you weren’t expecting, especially when it’s attached to a suspicious message

Tools and tips to protect yourself

man looking at phone in restaurant

Staying safe online

Whether you’re shopping, banking or using social media, make sure you're staying safe online. Check out our short video outlining the simple ways you can protect yourself online, including tips for avoiding common scam.

Watch video

girl watching ipad with headphones

Expert advice

Take a look at our webinar series, where you can hear from CommBank online security specialists. Here they share tips to help you feel confident with online safety and security. Watch the webinars any time, on demand. 

Explore webinar series

three women gathered around a phone

Extra security with NetCode

NetCode is a quick and simple one-time security code sent to your mobile phone by push notification or SMS. It's used to confirm certain transactions and tasks in NetBank.

It's important to read all NetCode messages carefully. Only enter a NetCode if you'd like to authorise the activity outlined in the message. Never share your NetCode with anyone, including us.

More about NetCode

More information 

  • We work closely with law enforcement and other authorities to shut down fake or malicious websites as quickly as possible. We also support the Australasian Consumer Fraud Taskforce in the promotion of ScamWatch, a website dedicated to the prevention of scams. 

    Find out more about protecting your online security from the Australian Cyber Security Centre.

    Visit Be Connected to access a free online course that teaches you how to perform common banking tasks securely from home.

In your language

Important information

  • As the advice on this website has been prepared without considering your objectives, financial situation or needs, you should, before acting on the advice, consider its appropriateness to your circumstances. View our Financial Services Guide. Terms and Conditions for these products and services are available online or from any branch of the Commonwealth Bank. The Terms and Conditions should be considered before making any decision about these products.