Please note from 15 March 2024 any Australian Variable Rate changes to the All in One - Regulated Loan Standard Line of Credit will be made available on our website and in The Australian newspaper and any changes to the credit fees and charges to the All in One - Regulated Loan Standard Line of Credit will be communicated to you in writing and made available on our website click here for more information.

Rabobank warns of an increased risk of scam and fraudulent activity including fictitious emails regarding fake Rabobank Term Deposits. Protect yourself online https://www.rabobank.com.au/security

FAQs - Online Security

To login to your account, three pieces of identification are required this is why it is vital that you keep your Digipass and PIN safe and secure and do not disclose your PIN to anyone. Also, funds can only be transferred in and out of your Linked account.

When you have completed your banking activities, make sure you always explicitly use the 'Logout' button to correctly terminate your banking session. For added security, if you are inactive for 10 minutes after logging into online banking (or 5 minutes on the mobile app), you will be asked if you'd like to continue your session, and if no response or activity is detected, you will be logged out.

Whenever there is any news or issue about security that we would like to share with you, we will always communicate with you via e-mail. Note: we will never ask for your login credentials nor your PIN number.

When you click on 'Login to your account' on the Rabobank Online Savings site, the URL should start with https://mysecure.rabobank.com.au

Your browser may also display a padlock to indicate that you are in secure session. The position of the padlock on your screen will vary depending on your browser. This padlock identifies that a Secure Sockets Layer (SSL) is in place, designed to provide secure communications over the internet.

To verify the authenticity of the SSL, double click the padlock icon to view the certificate information.

They will often try to direct you to fraudulent websites via emails or offers in pop-up windows, asking for your personal information. In many cases there is no simple way to determine you are on a fake website because the URL (domain name) will contain the name of the institution it is imitating.

However, if you type, or cut and paste the URL into a new web browser window and it does not take you to the legitimate website, or you get an error message, it may have been a cover for a fake website. If you have any doubts please call us on 1800 445 445.

All generated codes (APPLI 1 and APPLI 2) are one time use and only have a limited time validity. If you don't enter the generated code within the time it is displayed on the Digipass display, you will need to generate a new code.

Each Digipass serial number is paired with each unique customer number, you will need to enter your customer number and use your Digipass and 5 digit PIN to generate your one time authorisation code for logging in, completing transactions and making any changes to your account. When using the Mobile App, this is the same however you do not need the Digipass device as it is built into the app.

Rabobank is committed to keeping your money and identity secure. This is why all our customers get a free Digipass. The Digipass provides leading online banking security and is much safer than a simple username and password. It randomly generates single-use security access codes for logging in and authorising transactions.

We take pride in our excellent security record and we are very careful to maintain it. Now you can bank online with complete peace of mind.

Secure connection

If you login to the secure site, a secure connection is made between your computer and our computer.

A secure connection provides that any data transaction is encrypted with a key only known by the computers involved - like messages that are being sent by sealed envelopes.

Transfer Limits

We have a daily transfer limit of $300,000. You may request to increase this daily limit but you will need to contact us and be securely identified. Transfers can only be made to your nominated linked account once it has been verified.

Make sure you have installed the latest anti-virus software and / or a personal firewall that protects your computer against viruses and digital abuse. Make sure that your anti-virus software is always activated - even when you are online. Update your security software regularly and have the software conduct a full scan of your computer from time to time.

When sending your Digipass activation and unlock code we only use the email address or mobile phone number you provide.

We take the security of our customer's information and investments very seriously and for this reason the Digipass and activation code are sent separately via different communication channels. This means that if the Digipass ends up in the wrong hands, your account cannot be accessed without the activation code or unlock code, which can only be sent to you, and vice versa.

Unsolicited, 'fake' emails are also referred to as 'SPAM' and often:

  • Ask for personal or sensitive information.
  • These emails often use generic greetings and may ask for your personal information to be confirmed by entering your details into a form.
  • While some emails are easy to identify as fraudulent, others may appear to be from a legitimate address and trusted online source. However, you should not rely on the name or address in the 'From' field, as this is easily altered.
  • Claim you have won a prize or a free gift. These emails will often ask you to provide personal information in order to collect the prize. Of course not all of these are fake. You should confirm that the prize or gift is from a company that you know and trust.
  • Link to fake web sites. Fake emails may direct you to counterfeit websites carefully designed to look real, but which actually collect personal information for illegal use.
  • Contain attachments like Word documents or PDFs that can contain viruses or might be tampered with to abuse security leaks in Microsoft Office or Acrobat Reader.

Rabobank takes online banking security seriously, our mobile banking app is no exception.

To keep mobile banking convenient, the steps you take when you register for mobile banking creates a built-in version of your Digipass. It is unique to each device you register with so the two factor security layer you're used to having around your savings is always with you. All of your mobile banking sessions and transactions are validated and authorised using the Digipass software together with your mobile banking PIN.

Pop-up windows are the small windows or ads that appear suddenly over or under the window you are currently viewing. The vast majority of these are legitimate ads and pose no threat.

Fraudulent pop-up windows are a type of online fraud often used to obtain personal information. Pop-up windows are often the result of programs installed on your computer called 'adware' or 'spyware'.

These programs monitor your online activity and regularly come hidden inside many free downloads, such as music-sharing software or screen savers. Many of these programs enable harmless advertisements, but some contain 'Trojan horse' programs that can record your keystrokes (for account login) or relay other information to an unauthorised source.

Phishing, pronounced 'fishing', is the term used to describe hackers who attempt to get access to sensitive information by posing as a legitimate company. They send emails from a fraudulent server address, pretending to be the real company or financial institution. These emails contain invitations or prompts for you to verify your account, enter a username or password into a fake copy of the company's real website.

Old browsers and old operating systems contain security risks because they regularly lack security updates. The most recent version of your internet browser and operating system offer you extra security.

In case you suspect fraudulent payments and / or suspicious activities on your account you should call us immediately on 1800 445 445. We are available Monday to Friday, between 6am and 8pm (Sydney time). If it is outside of business hours, please email us at clientservicesAU@Rabobank.com

Here are some security precautions anyone can adopt to increase their own levels of online security.

  • Protect your Digipass and PIN
  • Never share your Customer Number or Digipass PIN with anyone. Memorise your Customer Number and Digipass PIN. If you need to write them down, store them in a location separate from your Digipass or account numbers.
  • Always keep your Digipass separate from your account number and your Digipass PIN.
  • Do not write your Customer Number or Digipass PIN on a post-it note and stick it to your computer.
  • Notify us immediately if your Digipass is lost or stolen and we will issue you with a replacement Digipass and PIN.
  • Never send sensitive financial information to Rabobank through regular email. Rabobank customers have access to secure email within our secure transaction site.
  • You should use our email function to communicate with us if you want to include information pertaining to your account statements or account details.
  • We strongly recommend that you protect your computer from viruses by installing and regularly updating firewall and anti-virus software.

Common security threats include phishing, fake emails, fake websites and fraudulent pop-up windows.

Rabobank are acutely aware of these potential threats from would-be online fraudsters and hackers. Internet frauds often target static passwords and many people use the same password or PIN for multiple applications. This is why Rabobank doesn't use static passwords.

A Wi-Fi network at home is very handy as you can surf the internet throughout the house. Make sure that your Wi-Fi network is password protected or encrypted. In this way data is transferred encrypted. Via unsecured Wi-Fi networks outsiders will have access to information on your computer and they can monitor and track your online behaviour.