By clicking “Accept”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.

Recognising fake or phishing e-mails

Exercise caution if you receive any unusual requests for your personal or financial information through email or phone communication. These requests might be fraudulent attempts, commonly referred to as "spoof" or "phishing" attacks.

  • If you suspect that your account's security has been compromised, please contact us directly at

Fraudsters may attempt to impersonate reputable companies using email, phone calls, or text messages. Their aim is to trick recipients into disclosing confidential information like passwords, bank details, or credit card information. They might also try to get recipients to download malicious software.

If you come across a message that urges immediate action, contains attachments or hyperlinks, or solicits personal information, it's important to exercise caution. This could include requests for transferring funds to overseas accounts or cryptocurrency transactions. Refrain from clicking on links from unfamiliar sources and avoid responding to such messages.

Phishing phone calls

Bastion is unlikely to make unannounced calls to you about your account.

If you receive a missed call from someone purporting to be from Bastion, do not call the number back.

If you’re unsure whether the request was genuine or not, check your e-mails as we will have also sent you an email.

Email phishing attempts

A phishing email pretending to be from Bastion typically contains a link that takes you to a fake website. There, you’ll be asked to sign in and submit personal and account information.

These emails may include a Bastion logo and a fake Bastion address in the “From” line.

Here are some typical traits of phishing scams:

  • Asking for confidential information
  • An urgent or threatening tone that asks you to act quickly
  • Unsolicited attachments
  • A generic greeting
  • A web address that looks like Bastion, but which may have a typo or extra numbers and letters (like

Report a phishing phone call or email

If you receive a suspicious phone call or email, you should report it to us immediately. Here’s how:

Suspicious phone call

  1. Tell the caller that you’ll call back through official Bastion contact channels. If you missed the call, do not call the number back.
  2. Email us at with details of what the caller asked for and the phone number they called from.

Suspicious email

  1. Don’t click any links in the email or open any attachments.
  2. Forward the message to us as an attachment at

We’ll let you know that we received the email.

Recognizing legitimate contacts from Bastion

If we need to contact you about your account, you can expect the following:

  • We’ll never ask you to provide confidential information like your password or credit card details in an e-mail
  • We’ll only include links for convenience
  • We’ll never use threatening language

Raise awareness across your colleagues

Help your colleagues recognise phishing attempts and other malicious behaviour using Bastion's awareness training program. From configuring safe and robust passwords to preventing CEO frauds, Bastion train your teams in a fun and engaging way.

Request a free trial here to test out our Cyber Awareness Program.