Keeping your super safe

We're committed to helping you protect your super. Learn about the simple steps you can take to help protect your privacy and identity from theft.

If you think you've been scammed

If you think your AustralianSuper account may have been compromised in some way, keep calm and follow these steps:

Contact us 

Report it to us

Through the mobile app (the fastest option), email or by calling us on 1300 300 273.

Change your passwords

Change your passwords and call relevant financial institutions to let them know what's happened.

Contact IDCARE

Contact IDCARE, Australia and New Zealand's national identity and cyber support service.
1
2
3

Multi-factor authentication (MFA)

In a phased approach from the 21 May 2025, AustralianSuper has started to roll out multi-factor authentication for the login process.

MFA is an extra layer of security added to your account, making it harder for unauthorised individuals to gain access.

The next time you log into your online account, we'll send a one-time PIN to your registered mobile number. Simply enter this PIN on the login screen to verify your identity.

  • What if I need to update my registered mobile number?

    If you need to update your mobile number, please contact us on 1300 300 273 8am-8pm (AEST) weekdays.

Protecting your privacy and identity

Identity theft occurs when your personal information is used to carry out fraudulent activity, like accessing your AustralianSuper online account and attempting a withdrawal or a rollover.

We have secure measures in place to help ensure your super is safe. However, there are additional things you can do to reduce the risk of identity theft on your account.

  • How we protect your information

    AustralianSuper takes the issue of account security and the privacy of our members very seriously. Protecting our members’ interests is of key importance, with cyber security risk management being a focus area.

    We have deployed robust security measures and processes that are designed to keep members’ data safe, and are consistent with relevant legislation and regulation.

    Australian Prudential Regulation Authority (APRA), Australian Securities and Investment Commission (ASIC), and other Australian and International regulatory bodies provide direction and oversight on how we operate.

    Security measures specific to protecting members include:

    • Further authentication for member-critical actions such as registering for an account online or resetting a password within the Member Portal and the Mobile App.
    • A comprehensive account and transaction monitoring program, including a dedicated team that analyses any suspicious behaviour.
    • Enhanced call security and staff training to strengthen mitigation controls and monitoring, to combat increasingly sophisticated cyberattacks and data breaches.
    • Working with government agencies, regulators and law enforcement agencies to ensure unhindered flow of regulatory advice and direction, and timely intervention in case of criminal activity.

View the latest scams, fraud and security alerts

Back to top