Top ten cyber safety tips

1. Use strong passphrases
   Create long, unique passphrases for each account. Avoid using personal information like birthdays or pet names, and consider using a password manager to securely store them.
2. Always set up Multi-Factor Authentication (MFA)
   MFA adds a second layer of protection by requiring something you know (like a password) and something you have (like a phone or token). CFS customers are protected by MFA on the mobile app and FirstNet.
3. Recognise and report phishing
   Phishing scams often look legitimate and use urgency to trick you. Watch for suspicious links, unexpected attachments, and requests for sensitive information. Pause before you act and verify the source.
4. Avoid clicking on suspicious links
   Manually enter URLs and phone numbers from official sources. Don’t click on links in unexpected emails or messages, even if they appear to come from trusted contacts.
5. Protect your data
   Delete old files and emails that contain sensitive information. Shred physical documents you no longer need and secure your mailbox to prevent identity theft. Monitor your credit profile for unusual activity.
6. Keep your devices updated
   Software updates fix known vulnerabilities. Turn on automatic updates for your phone, computer, and apps, and restart your devices regularly to ensure updates are installed.
7. Install internet security apps
   Protect your mobile and computer with internet security apps, such as anti-malware and anti-virus software, which can detect and block malicious activities.
8. Secure your devices and passwords
   Don’t share your passwords or PINs — even with friends or family. Memorise your codes and delete any records of them. Use strong, unpredictable combinations.
9. Be cautious on public wi-fi
   Avoid conducting sensitive transactions on public networks. Always log out of browser sessions when finished and use secure connections whenever possible.
10. Stay informed and alert
    Cyber threats evolve constantly. Stay informed by visiting trusted resources like Scamwatch, ASIC’s scam register, idcare.org, and the CFS staying safe online hub.
    
    And remember — managing your account online is one of the easiest ways to stay in control and protect your information:
    
    ● Log in to your account via our website (cfs.com.au)
    ● Download the Colonial First State mobile app (Apple App Store or Google Play)
    ● Download the CFS Edge mobile app (Apple App Store or Google Play).
    
    It’s quick to register, and if you’ve forgotten your login details, resetting them is simple.
    
    Whether you’re on desktop or mobile, managing your account has never been easier.

If at any time you think you may have been targeted by scammers or the subject of fraud, please contact us on 13 13 36 and change your passwords. Also visit idcare.org — Australia and New Zealand’s national identity and cyber support service — which can help you if you’ve been hacked or scammed.

It can be very hard to spot a scam, but some of the warning signs to watch out for are urgent requests, suspicious links, emotional stories, or deals that seem too good to be true. Here’s what to do if you receive a suspicious message or request:

Stop

Take some time to think about whether the request is genuine. Real companies or government departments won’t pressure you to make a payment.

Check

Search the person or company online and look for any reviews or experiences others may have had. Call them using a number from their official website to confirm.

Protect

If something feels wrong, act fast. Contact your bank, change passwords, and report to ScamWatch. Always access your account via official CFS channels.

• CFS staying safe online hub
• Idcare
• Scamwatch