Security

We’re committed to providing our members with a safe and secure banking experience.

Security and Fraud

Stay up to date with current scams

Scams and scam techniques change and evolve over time. Get information about the latest scam reports on scamwatch.gov.au to be aware of what to watch out for.

 

Current scams

Computer takeover scam

Also known as remote access scams, the scammer may pretend to be from well-known organisations such as banks, government organisations, police, and computer and IT support organisations. They create a sense of urgency to make you give them access to your computer via remote access software. If you receive this type of call that cannot be verified by other means hang up.

ATO scams

You may receive messages regarding refunds or demands for payments. Never give out your personal information to anyone over the phone or via sms or email if the message is unsolicited.

Business Email Compromise (BEC)

Business email compromise is when criminals use email to abuse trust in business processes to scam organisations and individuals out of money or goods. Criminals can impersonate business representatives using similar names, domains and/or fraudulent logos as a legitimate organisation or by using compromised email accounts.

Please be scam aware and make sure you check out the latest warnings on the ATO website here https://www.ato.gov.au/General/Online-services/Identity-security/Scam-alerts or the ScamWatch website here https://www.scamwatch.gov.au/

 

What to do if you suspect suspicious activity

If you have provided your personal banking details to a phishing site, please get in contact with RSL Money immediately by calling our Member Contact Centre on 1300 000 775 from 9am – 6pm on Monday to Friday or between 9am – 12 pm on Saturdays (AEST).

You can also report scams to the ACCC via Scamwatch. This is a page where people report incidents, so others are aware of current scams, can monitor trends or disrupt a scam where possible.

If you believe your personal information is at risk, you can contact IDCare on 1300 432 273 or visit idcare.org.

 

How we protect you online

We have employed a wide range of security measures to help protect your personal information and transactions including:
 
  1. Firewalls
  2. Encryption
  3. Automatic Time-outs
  4. Incorrect Access Code-block
  5. Last Login Time Check
 
In the unlikely event that an unauthorised transaction occurs on your account, we guarantee that you will not be liable for any unauthorised transaction carried out (provided you meet your obligations under our Terms and Conditions, the ePayments Code and you haven't contributed to the loss).
 
New SMS feature for fraudulent card transactions.

We constantly monitor transactions to identify fraud, ensuring your accounts are secure and protected. If we see a potentially high risk fraudulent transaction on your card you will receive a phone call from us. We have also now launched a SMS feature for lower risk transactions. The SMS will always contain the date and time or the transaction and the last 4 digits of your card.

If you receive an SMS that contains the above details, simply respond to the SMS to confirm with either YES or NO. If you respond YES to confirm the transaction was legitimate no restrictions will be placed on your card, if you respond NO a member our team will contact you as soon as possible.

How you can protect yourself

We take the protection of your information and transaction data very seriously. But online security is a partnership between us. As such, it's important that you take measures to improve your online security. Listed below are areas you can focus on to keep your personal information secure.


Protect your member number/access code

Here are a few helpful tips to assist you in choosing and using your access code:

  • Have a unique access code for your Online Banking. Avoid using the same access code for different online applications.
  • When choosing an access code, select something that you will remember easily but which will not be obvious to others. Refrain from using your telephone number, car registration, postcode or other numbers easily linked to you personally.
  • Change your access code regularly. We recommend every 90 days.
  • Do not write your access code down or provide it to anyone, even if it is disguised.
     

Protect your computer and personal information online

Here are a few helpful tips to assist you in protecting your computer and personal information online:

  • Install security software on your PC and run automatic updates to check for suspicious activity.
  • Avoid using public computers whenever entering personal information such as credit card details, passwords and bank account details.
  • Never provide personal information such as bank account details, access code or credit card details via email.
  • Set up spam filters on your email account. If you do receive emails from a source you don’t trust, delete these immediately without opening any links or attachments.
  • Always enter www.rslmoney.com.au by typing the address into your browser, checking that you're connected to the legitimate RSL Money website. 
  • Always select "log out" from the Online Banking menu when you complete your banking.
  • Look out for the padlock or key symbol within the browser when accessing Online Banking.
  • Regularly check your accounts and statements for any unauthorised transactions.

 

Common online security risks

Email scams

Email scams often aim to trick online banking consumers into disclosing confidential financial information such as their Online Banking login and access code details via email. Often scam emails can look very professional and give the appearance of coming from a legitimate financial institution. 

Please note, RSL Money will:
  • Never ask for your Online Banking login details or card details via phone or email.
  • Never use email to send you a link to an Online Banking login page.
  • Never ask you to communicate your access codes to us in any form.
If you receive a suspicious email purporting to come from RSL Money:
  • Contact RSL Money to verify the email.
  • Delete the email immediately and do not click on the link.

If you have clicked on the link in the email:

  • Perform a scan for possible viruses and Trojans using your virus protection software. Should you require further information, please contact your software vendor.
  • After you have completed a scan on your computer, please contact RSL Money on 1300 000 775 to report the occurrence and have your Online Banking access code re-set.
  • If you do not have anti-virus protection, we recommend that you do not use Online Banking until you have up-to-date anti-virus protection. 
     

Identity Theft

Identity theft occurs where a criminal obtains the personal details of an individual to masquerade as that individual and, transfer funds, obtain cash, secure loans or other financial benefits. The individual is then left to deal with the debts incurred, along with the associated legal implications.

Members should:

  • take responsible care of all personal information to minimise the risk of loss/theft (e.g. by keeping tax records and other financial documents in a safe place);
  • minimise the risk of mail theft by securing your mailbox (e.g. with a padlock);
  • cancel unused credit union/bank/utility/phone accounts;
  • securely dispose of any documents that may contain personal details (such as account statements, credit card transaction slips, bills, etc);
  • regularly obtain a copy of your personal Credit File to make sure there is no unusual activity on your file; and
  • promptly report to the police any loss or theft of personal documents.

 

Online Banking Security

We have placed the utmost importance on ensuring that your personal details, funds and account information remain secure from unauthorised access.
 
The closed padlock on the bottom of the Online Banking browser page indicates that the Online Banking site is secure.
 
Tip: To check that you are using a secure web address, look at the root of the web address following the letters "http://". In a secure site you will see "https:/". The letter "s" signifies that you are accessing a secured address. Unsecured addresses do not include an "s" in the root address; they start with "http://".
 
In addition, our system has various security features to safeguard your transactions and personal information. These include:
  • Secure login pages - your access information is encrypted (scrambled).
  • Member chosen access codes - you can change your access code at any time.
  • Member chosen login name.
  • Password anonymity - you are the only person that knows your access code.
  • The Online Banking login page is unable to be cached - this means that your personal login information is erased when you leave the login page and cannot be retrieved by anyone else using your computer.
  • System lock after 3 attempts - if a user enters an access code incorrectly 3 times, Online Banking will be locked and the account blocked. The system can be unlocked and your access code reset when the Credit Union is contacted and the person is identified as the account owner.
  • Timeouts for session inactivity - your Online Banking session will time out after 15 minutes if there is no activity within your banking session.
Your browser is out-of-date!
click here to access online banking click here to upgrade your browser

×