Thu, 13 Sep, 2018
Have you been targeted? – Hundreds of Woolworths Rewards members targeted in latest scam
Fraudsters have targeted hundreds of Woolworths Rewards members in an attempt to steal their points over the past few months.
With reports coming in claiming the increase in scammers targeting customers, the supermarket giant has made the decision to tighten account management controls.
Speaking to news.com.au, a spokesman for Woolworths said that there was no evidence to suggest its systems had been compromised.
“Our investigations indicate to us they’ve had their details obtained from another source or from a scam,” the spokesman said.
Currently, over 11 million Australians are in possession of a Woolworths Rewards card, with a few hundred believed to be affected by the scam.
Accounts found to have suspicious activity have been locked down and customers who may have been affected have been contacted directly.
All fraudulently redeemed points will be reinstated in full.
“We value the trust of our members and take our responsibility to uphold the security of their accounts seriously,” said Woolworths director of loyalty, Ingrid Maes.
“It’s clear fraudsters are becoming more sophisticated in the ways they target users online and our members are unfortunately not immune to these threats.
“That’s why we’ve put in place a range of new account security controls to help our members keep their accounts more secure.
“As always, we encourage our members to remain ever vigilant of online scammers and to keep their accounts as secure as possible with strong and unique passwords.”
To put a stop to the fraud, Woolworths has put these measures into place:
- One Time Code: members will be asked to enter a unique code sent to their email address if they wish to change point redemption preferences.
- Auto-notification of redemption settings changes: members will receive immediate notification via email if their redemption preferences are changed.
- Enhanced password security: members who choose to update their password will be required to create a password containing at least eight characters, a number and upper and lower-case letters.
So far, in 2018 alone, 104,000 scams have been reported to the ACCC, which totals to $84 million.