Security Tips

We take your security seriously. Protecting your identity and accounts from fraudsters is important. We’ve got some helpful tips you can follow to stay safe when banking online and using your debit or credit card.

Protecting yourself from identity theft

Identity theft is when someone uses your personal information to carry out fraudulent activity. They may try and access your bank accounts or use your details to open a credit card or transact online.

To reduce the risk of identity theft you should:

  • Secure your letterbox as thieves can use the personal details in your mail.
  • Notify us immediately of any change to your address or contact details. You can contact us on 13 22 65 if this is the case.
  • Destroy or shred any documents containing personal information before throwing them out.

Avoiding phishing and scams

Phishing are bogus emails created by fraudulent people. The aim of these emails is to trick you into clinking on links to fake websites, opening attachments or revealing personal information.

We’ll sometimes email you with important updates but we’ll never send emails asking you to confirm, update or disclose personal or banking information.

You can visit the Security Alerts page to see the latest phishing emails received by NAB customers.

Keeping your card and pin safe

  • Once you’ve received your debit or credit card, immediately sign the back of it.
  • Protect your card, NAB ID (located on the back of your credit card or debit card, above the magnetic stripe) and authentication device from theft.
  • Don’t let anyone else use your card, NAB ID or authentication device.
  • If we send you a PIN envelope, destroy it after memorising the PIN.
  • Don’t write down your PIN or password on your card, authentication device, or account statement.
  • Don’t tell anyone your PIN or password (even your family or friends).
  • When choosing a new PIN or password, don’t choose one that could be easily guessed or associated with you, such as your birth date, name, telephone number, address, or a friend’s, relative’s or pet’s details. Use a password only you would know.
  • Change your PIN regularly.
  • When making purchases, never lose sight of your card to reduce the chance of someone 'skimming' your details, i.e. using a device to copy the details from your card.
  • Don’t use an ATM if you think something’s not right.
  • Don’t let anyone see you entering your password or PIN.
  • Remember to take your card after using the ATM. You’re liable for any money lost as a result of someone else using your card to withdraw or transfer funds.
  • When your card expires, cut it diagonally in half (including any embedded microchip on the card, magnetic strip and security code).
  • Notify us immediately if you lose your card, believe it is stolen or think someone has used your card and pin.
  • If using SMS Security, don’t disclose your security code to anyone.

Managing your Internet Banking password

When using Internet Banking we’ll ask you to enter your NAB ID and a password to log in each time. Since your banking access is protected by this password, it’s important that you take steps to keep the password safe.

We’ve got tips for creating a strong and secure password:

  • Choose between 6 and 8 characters- with at least one numeric and alpha character. Passwords are case sensitive.
  • Pick a unique (not re-used for other websites or apps) password.
  • Don’t use your date of birth, telephone number, address, your name or the name of a relative in your password.
  • Always choose passwords that are easy for you to remember but hard for others to guess.
  • Change your password regularly.
  • Be careful if you’re vision impaired and are using screen readers software voices for data entry. Ensure you’re not heard entering your password.

We’ll help you protect your password

Using SMS security

You should register for SMS security. This will allow you to easily reset your NAB Internet Banking password if you forget it or have entered it incorrectly three times.

Password Lock

In addition to the protection of SMS security, we’ve introduced an extra layer of protection for your Internet Banking password called Password Lock.

This allows you to manually lock and unlock your internet banking password. You can make your account accessible when you need it to be. It’s useful for situations when you don’t have control over your computer environment such as libraries, airport lounges or internet cafes.

Using this feature, you can lock your password before you log out of Internet Banking. Then your account can only be accessed again after you choose to unlock. You unlock it by calling 1300 651 656 or +61 3 8641 9886 if you’re outside Australia, and entering your telephone banking password. See here for more information about using telephone banking.

Notifying us when something is wrong

You should get in touch with us as soon as possible on 13 22 65 if you’re aware of any of the following:

  • Your pin or passwords you use with your account have become known to someone else.
  • Your card or authentication device has been misused, lost or stolen.
  • There’s been an error or unauthorised transaction on your account.
  • Your mobile phone has been lost or stolen, and your mobile phone number is registered for SMS Security.

Please read the electronic banking tips brochure (PDF, 312KB) | (HTML version) for more information on how to help keep your money and accounts safe.