How do I keep my account safe?
Here are some simple things you can do to keep your account safe.
- Keep your email account secure. Anyone with access to your email can reset the password to your RewardsCentral account and gain access. Therefore your RewardsCentral account is only as secure as your email account.
- Choose a secure password for RewardsCentral and change it regularly. Do not re-use the same password between different services and accounts you use.
- Do not write down your password anywhere.
- A password manager or password safe is a piece of software that securely encrypts all of your login details and passwords and protects them with one master password. Using a reputable password manager is an ideal way to keep your accounts secure, as it allows you to choose a unique password for each account and not have to remember it. However you must remember and use a strong master password for your password manager.
- Install all software updates for your computer and mobile device operating system, and update other software you use such as your web browser and smartphone apps.
- Install and use reputable anti-virus software.
- Only download and install software and apps from reputable sources, such as the official app store for your computer or mobile device.
- Learn about how to identify and protect yourself against phishing emails and scams, and always remain vigilant.
- Never give out your account details - RewardsCentral will never ask you for your password, except when signing in. If anyone asks you for this information or if you receive an email asking you for this information, please report the incident as soon as possible.
- Do not share your personal information with others.
How do I choose a secure password?
Choosing a secure password is easier than you think. Here are a few important things to remember:
- Do not choose a password based upon personal information like your name, birthday or other information that one could easily discover about you from such sources as searching the internet.
- Do not choose a password that is a word (English or otherwise) or a simple transformation of a word; e.g. putting a punctuation mark at the beginning or end of a word, converting the letter "l" to the digit "1", writing a word backwards, and so on.
- Do not choose an obvious password like 'password', '12345678' or 'qwerty'.
To choose a secure password use a combination of capital and lowercase letters, numbers, and standard symbols (! @ # $ % ^ & *), and be sure to make your password at least 7 characters long.
If you're completely stuck, try creating a password using this method:
- Make up a sentence that you can easily remember, e.g. I'd love to see a polar bear in Antarctica
- Now take the first letter of every word in the sentence, and include the punctuation. You can throw in extra punctuation, or turn numbers into digits for variety. The above example will become: I'l2sapb1A
What is a phishing email?
A phishing email is a hoax email sent out by a spammer to leverage the good reputation of a company in order to get recipients to provide information or click on a link in the email.
- The email is written and designed so that it looks like it came from the target company.
- The From address can often be falsified, so even if the email comes from a rewardscentral.com.au email address, this is no guarantee that the email is genuine.
- The link within the email may appear to lead to RewardsCentral, but the spammers can use clever ways to disguise the true destination of the link.
RewardsCentral has unfortunately been the target of a phishing email attack in the past. The subject line of the email was "Congratulations - You Have Just Got 100 RewardsCentral (r) points For FREE!"
This email is not from RewardsCentral.
Do not click on the link as it may verify to the spammer that your email address is valid, therefore ensuring you receive more spam. Do not reply to the email.
You can identify genuine RewardsCentral emails using the check list How to identify a genuine RewardsCentral email.
Most hoax emails are poorly worded, and may contain spelling and grammatical errors.
What should I do if I receive a phishing email?
If you have received a phishing/hoax email, you should delete the email from your inbox, and delete it again from your 'Deleted Items' folder.
If you clicked on the link within a hoax email, you should take the following precautions:
- Change the password on your RewardsCentral account;
- Make sure your computer is up-to-date with the latest updates, patches, and security software;
- Scan your computer for viruses, trojans and spyware.
How did a spammer get my RewardsCentral email address?
Spammers use a variety of methods to collect email addresses for spamming. There are email address gatherers that collect email addresses from every possible source. They search in places such as web pages, newsgroups, domain owner listings, ICQ member listings, basically anywhere they can get email addresses.
But you may be asking how did the spammer know that you were a RewardsCentral member? The answer is, it was sheer coincidence. With over 500,000 members around Australia, it is very likely that when a spammer sends an email to a list of email addresses obtained illegally from other sources, quite a large portion on that list are bound to be real RewardsCentral members. It is just a coincidence that you are a RewardsCentral member and you also received a spam/phishing email claiming to be from RewardsCentral.
RewardsCentral has been designed to be a fun, entertaining and safe environment; and we're committed to keeping it that way. If you encounter a member who is in breach of the RewardsCentral Terms of Service or who behaves inappropriately on rewardscentral.com.au, please don't be afraid to report it.
We take all reports of abuse seriously, and handle them with the strictest confidence.