keeping your super safe


We work hard to keep your super and personal information safe and have strict security measures in place. But HESTA, like many other super funds in Australia, has recently seen an increase in attempted fraudulent activity and scams targeting super.

Protect your identity to protect your super

Superannuation funds are becoming a target for criminals, with identity theft one of the biggest risks when it comes to protecting your super account.

Identity theft is where your personal information is compromised or stolen and used to carry out fraudulent activity.

We have various security measures to protect your super, but there are extra things you can do to reduce the risk of identity theft and the risk of a fraud on your account.


Here’s some important steps you can take to make sure your account is safe


The best way to keep on top of your super and detect any unusual activity is to access your HESTA online account and monitor it regularly. You’ll be able to:

  • track your balance
  • keep all your contact details such as postal address, email and phone number, up to date
  • check your employer contributions
  • download your annual statement
  • review your insurance cover
  • nominate your beneficiaries.

If you want to set up an online account you can register here.

We’ll send you an SMS confirmation of changes to your personal details made on your online account – remember if you receive a confirmation of a change you didn't make, contact us immediately on 1800 813 327.


Set up a password on your HESTA account that is:

  • difficult for others to guess but easy for you to remember, and is made up of a variety of letters, numbers and symbols
  • unique to your HESTA online account (don’t re-use passwords from other websites or apps)
  • is only known to you and not shared with family or friends.

We recommend you enable the 2-factor authentication option in your online account as it provides an extra layer of security. 

Remember to change your password regularly and keep your HESTA account details confidential.


We may call you about your super, particularly if:

  • there is information outstanding on a request you’ve made
  • if you’ve provided feedback on our services, or
  • if we think there’s something we can help you with to get the most out of your super through our advice services.

We do this as a benefit of membership.

However, unsolicited cold calls are illegal, and you should not engage with these callers as it could be a scam organised by fraudsters.

Fraudsters may attempt to obtain your personal information and account information over the phone or via SMS.

  • Never provide your superannuation information to someone who contacts you unexpectedly.
  • Don’t be pressured to make immediate financial decisions like transferring your super. Always take the time to check the legitimacy of the person or organisation contacting you. If the caller claims to be a HESTA employee and you have reason to doubt their identity, make a note of their name and contact number, before ending the call.
  • Verify the identity of the contact but don’t use the contact details provided in the message sent to you. The HESTA service team are listed on the HESTA website and we also have administrative team members that may contact you – this can be verified by calling the HESTA contact centre on 1800 813 327.
  • Report any SMS you receive that has spelling errors, unfamiliar sender address, suspicious links, or requests for personal information.

If you receive a phone call or SMS relating to your super that you’re unsure about:

  • contact us immediately on 1800 813 327 (not the number within the SMS)
  • don’t click on the links within the SMS or forward the message on.


Fraudsters may send you fake emails that can contain harmful links or malicious attachments, this is known as phishing. You can usually identify a phishing email by:

  • misspelling or images and graphics that don’t look quite right
  • unfamiliar sender address
  • suspicious attachments
  • requests for your personal information
  • creating a sense of urgency—scammers may try to test your better judgment by stating that something needs your immediate attention.

Always be cautious as phishing emails can be hard to detect.    

We won’t send you emails asking you to confirm or disclose your personal information.

If you receive an email that you’re unsure about:

  • don’t open the attachment or click on any links
  • contact us immediately on 1800 813 327 (not on the phone number on the email)
  • always access your HESTA online account through the HESTA website: or by typing the web address into a new browser window.






Female wearing orange top using mobile phone and tablet

Protecting your super from scammers

Types of superannuation scams

Scammers pretend to be financial advisers from organisations that appear trustworthy and will try to make contact online, by email or a cold call. They encourage individuals by promising things such as:

  • help in accessing your super early
  • moving your super to another financial product with the promise of better returns.

Often, they will ask you for:

  • personal information, so they can use your identity to commit a fraud on your account; or,
  • contact you and offer to help you withdraw your super savings. This might be as one lump sum to an account that doesn’t belong to you, or as a transfer to a self-managed super fund.

Once they have the information they need, they work on transferring your funds into an account controlled by them, and you risk losing your super to fraud.

Beware of advertisements promoting early access to super, as well as unlicensed operators. You can verify licensed operators on the ASIC Connect website.


Self-managed super fund (SMSF) scams

Australian Securities and Investments Commission (ASIC) has alerted the public of scams where individuals are encouraged to create a SMSF.

Usually, contact is made through a phone call or email. When people transfer their funds to what they believe is their SMSF, their super balances are instead transferred to a bank account controlled by the scammer.

You can read more about SMSF scams on the ASIC website.

Illegal early release scams

Scammers will sometimes claim they can help people access their super before they reach preservation age. Other than for extreme financial hardship or compassionate reasons, you generally can’t access your super until you’re aged 55-60. People experiencing financial stress may be vulnerable to this technique, so always speak to a HESTA team member if you want to learn more about early access to super.


Reporting scams

If you suspect fraudulent activity on your super account, please call us immediately on 1800 813 327.

For more information on how to protect yourself, visit:



You might also like

Here for you

The HESTA team is here to help. Reach out to us if you have any questions about your account.