On this page you will find advice on how to keep your personal and confidential information safe.
Your login details, i.e. your usernames and passwords, are the lock we put on systems and web services to keep out digital intruders. But that lock will only work if you take good care of it.
Login details are personal and must never be shared with anyone. Don't write them down, and make sure you create passwords that are hard to guess.
If you suspect that others know your login details, or that they may otherwise have been compromised, change your password immediately.
Passwords used on AU systems should never be used on other systems. Read more about AU passwords.
Authorities, banks or genuine companies will never ask for usernames, passwords or MitID information by email, text or similar. If you're asked to provide this kind of information, alarm bells should go off.
Learn more about how to spot phishing.
If you have even the slightest suspicion that unauthorised people may know your password, make sure you change it immediately.
AU continually checks that there are no public leaks of your primary user login at AU.
If you wish to check whether your private passwords have been leaked, you can visit the website haveibeenpwned.com.
Are you unsure whether your password is strong enough?