Super updates
07 October, 2025

Phishing, password strength and general cyber security behaviours

With so much of our lives happening online, keeping your super safe from cyber threats is more important than ever. From spotting phishing scams to creating strong passwords and building smart online habits, there are simple ways to protect your personal information and retirement savings. As a CareSuper member, you’ve got support every step of the way.

Common phishing and cyber security scams to watch out for

Understanding common scams can help you identify and avoid them: 

  • Phishing emails and SMS’s: Scammers may impersonate CareSuper, sending emails or SMSs asking for login credentials or personal information. Always verify such requests through our official CareSuper channels. We will always send SMS messages from ‘CareSuper’ and emails from addresses that end in @caresuper.com.au. 
  • Fake websites: Cybercriminals might create websites that mimic CareSuper’s design to deceive you into entering sensitive information. Always verify the website address (URL) before entering any details. 
  • Suspicious phone calls: Fraudsters might call claiming to be representatives from CareSuper or other official organisations, seeking to obtain your personal information, such as account numbers, tax file numbers or passwords. 
  • Social media scams: Be cautious about links shared via social media directing you to bogus login pages or offering fictional investment opportunities claiming to be endorsed by CareSuper. 

 

Spotting the signs of phishing and cyber security scams

Recognising the signs of potential online cyber fraud and scams is the first step in prevention. Here are some warning signs to be aware of: 

  • Unusual communication: Be wary if you receive emails or messages claiming to be from CareSuper with noticeable spelling errors or unusual formatting, as these are often phishing attempts. 
  • Urgent requests:  Messages that demand immediate action or threaten loss of access or funds are typically scams designed to panic you, prompting hasty actions without thorough consideration. 
  • Links and attachments: Always hover over links to reveal their true destination before clicking. Avoid downloading attachments unless you're certain of their legitimacy and safety. CareSuper will never request your passwords or login information by any means, including via email, text message, or social media. If you have concerns, please call us on 1800 005 166
  • Unexpected password reset requests: Exercise caution with unsolicited emails requesting password resets, especially if you didn’t initiate them. We will never request your passwords or login details through any means of communication, be it email, phone, text, live chat, or social media. 
  • Downloading software or apps: Be wary when asked to download software or applications as part of an 'important update' or 'security enhancement.’ Fraudsters may exploit this to install malware or gain access to your system. If in doubt, verify with us directly by calling our official number. We will never ask you to download any software outside of the genuine CareSuper mobile app. 

 

Steps to protect yourself

Strengthening your defences against cyber threats is essential. Consider taking these steps: 

  • Managing your passwords: Keep your accounts safer by creating strong passwords that mix letters, numbers, and symbols. Aim for longer passwords, ideally over 12 characters, using phrases or random combinations that aren't easily guessed. Regularly change your passwords and never use the same password across different accounts. Consider using a reputable password manager offering robust encryption and multi-factor authentication. 
  • Enable multi-factor authentication (MFA): Whenever possible, enable multi-factor authentication through your online accounts, which requires a second form of identification beyond your password to secure access. We will send verification codes via SMS from ‘CareSuper,’ which should be entered only into the official CareSuper website or mobile app. 
  • Be mindful of sharing information: Avoid sharing personal details via email or phone without verifying the identity of the requester, even if they appear to be from CareSuper. 

 

What to do if you suspect a scam

If something doesn’t feel right, trust your instincts. If you think you may have been targeted by a scam, please call 1800 005 166 straight away or email [email protected] - we're here to help. 

When you stay informed and build strong security habits, you’re taking a big step toward keeping your CareSuper accounts safe from phishing scams and cyber threats. A few smart moves can go a long way in protecting your personal details and securing your financial future. 

 

This is general information only and doesn’t take into account your objectives, financial situation or needs. Before making a decision about CareSuper, you should consider if this information is right for you.
We're giving you this information in good faith. It comes from sources we think are reliable and helpful. However, we can't guarantee its accuracy and take no responsibility for this content, including any errors or omissions. 

 
Information correct as at 7 October 2025.