All articles Account Security

Suspicious Banking Activity: Your Australian Action Plan

7 min read

When you log into your banking app and see something that doesn't look right – an unfamiliar transaction, a changed detail, or a login attempt you didn't make – it's natural to feel a jolt of panic. However, acting swiftly and systematically is crucial. This guide provides a clear, Australian-focused strategy for responding to suspicious activity in your banking app, helping you mitigate damage and regain control.

Act Quickly: The Immediate Lockdown Checklist

Your first reaction upon spotting suspicious activity should be to limit any further potential damage. This involves a rapid, systematic approach to securing your accounts and isolating the potential compromise.

Remember, every second counts when dealing with financial fraud. Don't delay; follow these steps as soon as you recognise an issue to protect your funds and personal data.

Immediate Steps:

  • Do NOT log out of your banking app yet. Take screenshots of all suspicious transactions, account changes, or alerts. Note down dates, amounts, and any reference numbers.
  • Contact your bank's fraud department IMMEDIATELY. Use the phone number from their official website or the back of your card, not one from a suspicious email or text.
  • Follow your bank's instructions. They may temporarily block your accounts, cancel cards, or guide you through password changes.
  • Change the password for your banking app and email associated with it, using strong, unique passwords. Enable multi-factor authentication (MFA) if you haven't already.

Reporting to Your Bank: What to Expect

When you contact your bank, be prepared to provide all the details you've gathered. They will open a fraud investigation and guide you through their process for recovering funds and securing your accounts. Most Australian banks have dedicated fraud teams available 24/7.

They will likely cancel compromised cards and issue new ones. Be aware that recovering funds can take time, but the sooner you report it, the better your chances. Ask for a reference number for your report.

If you suspect your identity might be compromised beyond just your bank account, consider reaching out to IDCARE. They are a free, government-funded service that helps Australians recover from and reduce the harm of identity theft.

Beyond the Bank: Securing Your Digital Footprint

Suspicious banking activity often indicates a broader compromise of your personal information, such as your email account or even your device. It's crucial to extend your security measures beyond just your bank.

Review other critical online accounts (email, social media, shopping sites) for unusual activity. Change passwords and enable MFA on all of them. Consider running a reputable antivirus scan on your devices to check for malware.

If you're feeling overwhelmed by the extent of the compromise, KNOMI is who you call. Our experts can help you assess your digital footprint for other vulnerabilities and guide you through a comprehensive recovery plan.

Official Australian Reporting and Prevention

Once you've secured your immediate financial affairs, it's important to report the incident to the appropriate Australian authorities. This not only helps track cybercrime trends but can also assist in broader investigations.

Report the incident to ReportCyber (cyber.gov.au), the Australian Government's online reporting portal for cybercrime. This helps law enforcement agencies understand the scale of cyber threats facing Australians. You can also report scams to Scamwatch (scamwatch.gov.au).

Moving forward, adopt robust cyber hygiene practices. Regularly update your software, use strong and unique passwords for all accounts, enable multi-factor authentication wherever possible, and be extremely wary of unsolicited communications. Consider identity theft protection services if you've been a repeat target.

If the incident proves particularly complex or you need ongoing support in strengthening your cyber defences, organisations like KNOMI offer expert assistance, ensuring you're not alone when navigating the aftermath of a cyber incident.

Frequently asked questions

What's the very first thing I should do if I see suspicious activity in my banking app?

Immediately take screenshots of the suspicious activity and then contact your bank's official fraud department using a number from their website or the back of your card. Do not log out until you've gathered evidence.

Who else should I report fraud to in Australia besides my bank?

After contacting your bank, you should report the incident to ReportCyber (cyber.gov.au) and consider IDCARE if you suspect broader identity theft. You can also report scams to Scamwatch.

How long does it take for banks to resolve fraud cases?

Fraud investigations can vary significantly, from a few days to several weeks, depending on the complexity of the case. Always ask your bank for a timeframe and a reference number for your report.

Should I change my passwords for all other accounts?

Yes, it is highly recommended. If your banking details were compromised, other accounts could also be at risk. Change passwords for your email, social media, and other financial or shopping accounts, and enable multi-factor authentication wherever available.