What you need to know

There is no impact to NAB’s systems and they remain secure following cyber attacks to companies including Optus and Medibank. Our team of experts are continually monitoring accounts and cards 24 hours, seven days a week to help protect you from suspicious activity. Where necessary, we’ll put extra controls in place to monitor and prevent unauthorised access.

We also provide regular updates and information for customers with helpful advice and tips on what they can do to protect themselves from fraud and scams.

We recommend reviewing the information available on IDCARE’s website, opens in new window relating to the data breach, which shares information on the potential risks and recommended steps depending on the type of information that has been compromised.

Support that Latitude is providing, opens in new window

Support that Optus is providing, opens in new window

Support that Medibank is providing, opens in new window

What to do if impacted by a data breach

If you’re a NAB customer whose details have been exposed in a data breach, here’s what you should do:

  • Take note of the advice provided in your data breach notification from the impacted organisation. Follow their instructions concerning the credentials that may have been exposed and proposed actions. Acting quickly to update or replace compromised credentials such as changing a password or replacing a driver licence is important to reduce the risk of identity theft.
  • Be on the lookout for suspicious emails, texts, calls or contact via a social media channel. If you receive an email or text and you’re unsure if it’s legitimate, report it to phish@nab.com.au or 0476 220 003 (047 NAB 0003) and then delete it. If you want to double check, contact the organisation through an official channel.
  • Be cautious of unexpected phone calls or texts that appear to come from a NAB number. Criminals can make it appear as if a phone call or text is coming from one of our legitimate numbers – this is called ‘spoofing’. This means that fake text messages can appear in the same thread as legitimate messages from NAB.
  • Use a unique, complex password for each account.
  • Obtain a copy of your free credit report across all three Australian Credit Reporting Agencies (Equifax, illion and Experian) to check whether someone has tried to obtain credit in your name. In Australia, you are entitled to a free credit report from each agency every three months.
  • Monitor your NAB accounts for any unusual activity and contact us immediately if there are any concerns by calling 13 22 65.

How to report possible fraud or scams

If you think you’ve been the victim of fraud or a scam, or are worried about your NAB account’s security, we can help. 

If your online security has been compromised, let us know immediately.

Call us 24 hours, seven days a week from the following numbers and quote 'Fraud Assist':

If you receive a suspicious message:

  • Never respond to or open a suspicious text or email. Forward suspicious emails to phish@nab.com.au and then delete.
  • Please forward suspicious text messages to 0476 220 003 (047 NAB 0003) and then delete.
  • Please note, you won’t receive a personal response from either phish@nab.com.au or from 0476 220 003.

Register for our security webinars

We hold monthly webinars on cyber security, fraud and scams open to all customers and the community.

Explore more security tips

Help keep your account and information safe when banking with us by following our easy-to-follow information and guides. Plus, our NAB Security Hub has a wide range of information on what to look out for and how you can stay safe from scams and fraud.

Important information