<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    <p>IMHO Move very quickly and start with your Client's bank not the
      destination.</p>
    There are many Australian BSB numbers owned by used by Clearing
    Houses such as Cuscal (NSW) that effectively work as a front for
    International Scammers.<br>
    Funds hitting these accounts are forwarded almost immediately to the
    scammers and not recoverable.
    <p>Cuscal have a range of BSBs from 802-xxx to 809-xxx.</p>
    <p>I'm sure Cuscal is not the only one doing this.</p>
    <p>Regards,</p>
    <p> - Guy<br>
    </p>
    <p><br>
    </p>
    <div class="moz-cite-prefix">On 20/12/2022 10:59 am, Giles Pollock
      wrote:<br>
    </div>
    <blockquote type="cite"
cite="mid:CAJQ50up+fQ8mGJJ1u4ZYeFHYG2sZO+dTU2qxVFZ=hpYPAAQszQ@mail.gmail.com">
      <meta http-equiv="content-type" content="text/html; charset=UTF-8">
      <div dir="ltr">First port of call would probably be the bank in
        question... Look up the BSB using something like <a
          href="https://bsb.auspaynet.com.au/" moz-do-not-send="true"
          class="moz-txt-link-freetext">https://bsb.auspaynet.com.au/</a>
        then either call that specific branch or the fraud prevention
        team at that specific bank. They should be able to take it from
        there...</div>
      <br>
      <div class="gmail_quote">
        <div dir="ltr" class="gmail_attr">On Tue, Dec 20, 2022 at 9:29
          AM Graham Maltby <<a href="mailto:graham@maltby.id.au"
            moz-do-not-send="true" class="moz-txt-link-freetext">graham@maltby.id.au</a>>
          wrote:<br>
        </div>
        <blockquote class="gmail_quote" style="margin:0px 0px 0px
          0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
          <div style="padding-bottom:1px"> Hi all,<br>
            <br>
            I have a client who is the victim/target of a phishing
            attempt - simple social engineering with a request to update
            banking details and pay outstanding invoices. The provided
            details are for an Australian Bank (BSB and account number).<br>
            <br>
            Who is the correct authority to direct this to?<br>
            Do banks generally respond to this sort of thing where (they
            are not implicated nor do I have any authority over the
            target account)?<br>
            <br>
            I have already reported it to the registrar that registered
            the bogus domain.<br>
            <br>
            Any other advice?<br>
            <br>
            Cheers,<br>
            Graham<br>
            <br>
            <br>
          </div>
          _______________________________________________<br>
          AusNOG mailing list<br>
          <a href="mailto:AusNOG@ausnog.net" target="_blank"
            moz-do-not-send="true" class="moz-txt-link-freetext">AusNOG@ausnog.net</a><br>
          <a href="https://lists.ausnog.net/mailman/listinfo/ausnog"
            rel="noreferrer" target="_blank" moz-do-not-send="true"
            class="moz-txt-link-freetext">https://lists.ausnog.net/mailman/listinfo/ausnog</a><br>
        </blockquote>
      </div>
      <br>
      <fieldset class="moz-mime-attachment-header"></fieldset>
      <pre class="moz-quote-pre" wrap="">_______________________________________________
AusNOG mailing list
<a class="moz-txt-link-abbreviated" href="mailto:AusNOG@ausnog.net">AusNOG@ausnog.net</a>
<a class="moz-txt-link-freetext" href="https://lists.ausnog.net/mailman/listinfo/ausnog">https://lists.ausnog.net/mailman/listinfo/ausnog</a>
</pre>
    </blockquote>
    <pre class="moz-signature" cols="72">-- 
Guy Ellis
Mobile +61 419 398 234
AU 03 9489 6678
NZ 09 884 9756
<a class="moz-txt-link-abbreviated" href="http://www.traverse.com.au">www.traverse.com.au</a></pre>
  </body>
</html>