At nib, we take your security very seriously. We have taken many important steps to ensure the security and integrity of your personal information.
- Secure Transmissions. This ensures that your information remains confidential. We use encryption technology and digital certificates, such as Secure Socket Layer (SSL), Transport Layer Security (TLS) and Extended Validation Certificates (EV), to transmit information between you and us which are some of the strongest forms of encryption available. This protects your information in three key ways:
Anti-Virus Protection. This detects and prevents viruses from entering our computer network systems. In addition, every email we send and receive is scanned by two systems before the message is transmitted and each individual computer is protected with it's own anti-virus protection.
Firewalls. This blocks unauthorised access by individuals or networks. Firewalls are one way we protect our computer systems that interact with the Internet.
Password lock. After 5 unsuccessful attempts at logging into nib Online Services, nib will not allow access for a period of 30 minutes. We have put this measure in place to prevent unauthorised access to your personal & financial details located within this secure part of our site. If you have forgotten your password, you can use the reset password feature to set a new password and unlock your account, even if it's within the 30 minute period.
- Authentication. This ensures that you are communicating with nib, and prevents other computers from impersonating us.
- Encryption. This scrambles transferred data so it cannot be read by unauthorised parties. From the moment information leaves your computer to the time it enters nib's system, all online access and sessions are encrypted. During any transaction, our encryption turns your information into code with billions of possible variations to make it secure. Once we receive the information, our computer systems decipher the code back into meaningful information so that we can complete your request. Only nib authorised individuals are allowed to access the information.
- Data Integrity. This verifies that the information you send to us is not altered during the transfer. The system detects if data was added, deleted, or altered after you sent the message.
What you can do
- Report Phishing (Hoax) emails. If you suspect that you have received a phishing email with nib branding, please forward it to email@example.com, with the subject 'phishing email' and delete it from your inbox. See the "Phishing (Hoax) emails" section below for more information.
- Update your software. Software updates are provided to protect, secure and provide a pleasant online experience. This includes things such as:
Scan your computer for viruses. This is an important step to prevent nasty viruses from giving you a bad experience.
Protect yourself with Firewall Software. Consider installing firewall software for added security.
Exercise good password management. Change your password regularly and never write your password down. Do not use obvious passwords such as your date of birth, name, telephone number or address.
- Virus scanner definitions
- Browser updates (Internet Explorer, Firefox etc)
- Operating System updates (Windows Vista, 7, 8, etc)
- Software updates (such as Java, Adobe Flash & Acrobat Reader, etc)
Phishing (hoax) emails
Phishing Emails (pronounced fishing) are used to trick people into revealing personal and financial information. This information can be used for illegal purposes, such as identity theft, fraudulent credit applications, transferring funds or purchasing goods.
Phishing emails are designed to look like they have been sent from a legitimate institution and may include official branding and links to a replica web site. Phishing scams will typically request users to "confirm their details" after clicking a link to the replica page.
The best protection against phishing emails is to never click on links, unless the email is part of a process that has been initiated by you (such as a password reset). If you suspect that you have received a phishing email with nib branding, please forward it to firstname.lastname@example.org, with the subject 'phishing email' and delete it from your inbox.
For more information on phishing scams, visit the ACCC ScamWatch website.