Phone 1800 444 396
Post GPO Box 264, Brisbane QLD 4001

Protecting your account from fraud

Keeping your data safe is our highest priority. We use multiple layers of security systems and processes to detect and prevent fraudulent activity.


Stronger account protection with Multi-Factor Authentication

Whenever you log in to your Brighter Super account in Member Online, you will need to confirm a code that we send to you by SMS or email.

This is known as Multi-Factor Authentication, which gives your account two layers of protection – your password and a one-time code.

This security feature is mandatory setting for all members’ accounts.

If you do not have an email address or mobile phone number on your account, you will not be able to log in to Member Online or our mobile app. To make sure you have access, you can update your contact details by calling us on 1800 444 396. We are open Monday to Friday, 08.00 am to 5.30 pm (AEST).

How it works

Multi-Factor Authentication is quick and easy to use.

When using Multi-Factor Authentication, each time you log in to Member Online you will be asked for your password as usual.

You will then be sent a unique code by SMS or email, which changes every time you log in. You then enter this code to access your account.

Sound familiar?

Multi-Factor Authentication has become a common feature in today's online world as businesses and organisations need to increase the protection of their customers' data.

You may already be using it regularly to access your account on other online services you use, such as banking, shopping, chat apps, video streaming and social media.

Next steps

Multi-Factor Authentication will be turned on automatically on 14 March 2023 for your Brighter Super account within Member Online.

We recommend that you check your email address and mobile phone number are up to date, which you can do by logging in to Member Online.


Latest scam updates and alerts

November 2022: Crypto scams

The Australian Securities and Investments Commission (ASIC) has recently released information about the top 10 ways to spot a crypto scam and the types of crypto scams that exist.

ASIC’s Moneysmart website also has information for investors on how to avoid crypto scams.

October 2022: Optus and Medibank data leak

Scamwatch has produced resources about how to avoid scams after the Optus data breach and the Medibank data breach.


Protecting yourself from scams

Scammers keep finding new ways to trick their unsuspecting target, whether it be over email, social media, websites or telephone. Superannuation is a particularly attractive target, so below are some examples of common scams and tips on how to protect yourself.

ASIC has also published information about self-managed super fund rollover scams.

Pretending to be a financial adviser

Scammers often offer to help people withdraw money from their superannuation, often through self-managed funds or for a fee. They may do this by pretending to be a financial adviser, gaining your trust to access your superannuation account on your behalf. In many cases they will set up fake companies and attempt to transfer super balances into their own account.

Remember, you are unable by law to access your superannuation unless you satisfy a condition of release. Anyone who is advising you otherwise is acting illegally.

Tips on staying safe:

  • Never give any information about your superannuation to anyone who has contacted you.
  • Never share your password for your superannuation account, or any other secure services such as your bank account or myGov account (for ATO and Centrelink).
  • Financial advisers must have a license, which you can check on ASIC’s website.
  • You can also check to see if someone has had their license disqualified on APRA’s disqualification register.
  • Stay ahead of the scammers and find out more about conditions of release in our accessing your superannuation info sheet, or refer to your account’s Product Disclosure Statement.
Phishing scams

Phishing scams are attempts to request personal information, by email, online or phone. They may pretend to be from your superannuation fund, bank or other financial service providers that you know.

These scams can look genuine, with the correct logo and branding. They can take you to a fake website whose web address is very similar to the real organisation’s website.

Tips on staying safe:

  • Stay clear of emails and messages promoting ways to access your superannuation and invest it in lucrative investment opportunities, such as property and self-managed funds.
  • Do not click on links or attachments in emails or messages claiming to be from a trusted organisation and asking you to verify or update your details.
  • Be wary of websites asking for information which do not have the secure padlock symbol or ‘https’ in the web browser bar – both are needed if you are entering personal information.
  • Look for mistakes in emails and messages claiming to be from trusted organisations. You may spot one of these warning signs:
    • Not using your name in the greeting at the start of the message.
    • Grammatical errors and spelling mistakes.
    • Slight differences in email address and website address.

Scamwatch also has information on how to Spot the scam signs.

Stay informed

There are a number of Australian Government websites that provide information and resources to help protect yourself from scams:

Reporting scams or fraudulent activity

If you have any concerns about your account, or identify any unusual activity, please contact us on 1800 444 396 as soon as possible. You can also report any scams you receive to the below Government agencies. Information on how to do this is available on their websites.

  • Report cyber – if you think you have been a victim of fraud or cybercrime
  • Scamwatch – to report to ACCC a scam.