Spotting and avoiding scams

Scammers usually want to steal your money. They have plenty of ways to try to trick you. Read on for ways to stop them, and get help if you've been scammed.

Think you've been scammed?

If you suspect a scammer has targeted you, visit the Australian Government's Scamwatch.

If you suspect your identity has been stolen, contact ID Support NSW.

On this page

The dangers of scams

A scam is a dishonest plan to steal something of value, usually money. Unlike a hoaxer, who might trick you for their own entertainment, a scammer usually wants your personal information. 

If they get your details, criminals could:

  • sell them to another scammer
  • steal from your bank account
  • commit a crime in your name.

How to spot a scam

Criminals usually pose as someone else like a bank, the police or even a friend, to win your trust. They get you to reveal your sensitive information, often by creating a sense of urgency to get you to act without thinking.

They might say you've won a prize or have a delivery due. They might ask for your bank details or other personal information so they can send you your prize or goods. If it seems too good to be true, it probably is.

Remember that no one from a bank or government agency will ever call or text you without warning to ask for your details.

Types of scams

Strange messages drop into our inboxes all the time. Learn how to manage them safely.

Phishing

Phishing is the name given to email scams that focus on getting your personal details. Phishing emails are common and easy to fall for because they look genuine. The end goal is to impersonate you and use your identity to steal your information or your money.

Phishing emails often include a link or a document. If you click on the link or attachment you're taken to a fake website that looks real. From there, you're directed to enter your details. Sometimes the link can contain malicious software (malware) that gives scammers access to your device. Never click on a link if you suspect a scam, and delete the email.

Spear phishing

Spear phishing targets a specific person or group and often will include information known to be of interest to the target. It could appear to come from your boss, be about current events at your work, or include financial documents. Criminals will pretend the matter is urgent to prompt you to click on links without thinking.

The Australian Cyber Security Centre's advice can help you recognise and report email scams. They may include a generic greeting without your name, a request for you to take urgent action that you did not initiate, requests for personal information and even threats.

Smishing

Smishing is a phishing scam as described above. The only difference is that it comes to your device via text message (SMS).

Go to the Australian Taxation Office to see an example of a tax refund SMS scam.

Quishing

Quishing is a phishing scam that comes to your device via a fake QR code. The fake QR code can be placed over a genuine one in a public setting, or it can be embedded within a phishing email.

Vishing

Vishing is voice phishing. Criminals call you posing as someone else, gain your trust to trick you into willingly giving them your details.

Scammers can fake their caller ID so they appear to be ringing from another number, like your bank. If someone claiming to be from your bank or the tax office calls, don't give away any details. Hang up, look up their number on their website and call them back.

Watch a video from a UK broadband supplier to see how to beat the scammers.

Visit Sitecore Content Hub to listen to an example of a prerecorded scam messagethat uses an urgent request and threats to try to get the recipient to take action.

Deep fake and AI scams

Artificial intelligence (AI) is the simulation of human intelligence in machines programmed to think and learn like humans. There are AI solutions that can create a video of a person teaching a class in any language, analyse health records, create news articles or essays on the topic of your choice, generate images for children’s books, or create code for new computer programs. While AI is designed to make our lives easier, it is increasingly being used by scammers to cause damage.

Watch this video of a scammer using AI to create a fake voice that mimics a grandchild to call the granddad and ask for money. It is important to think before you act:

  • does it sound real?
  • what does the person want me to do
  • could it hurt me (e.g. financially)
  • can I verify it independently and if not, don‘t act.
7:52

Would you fall for this deepfake scam call?

    What you can do to protect yourself

    To avoid scams you can:

    • review your social media privacy settings, especially who can see what you share
    • use unique and strong passwords or passphrases
    • keep your personal details private
    • use anti-virus software and keep it up-to date
    • question what you read and hear.
    Download as PDF Print this page
    Top of page