There is a much bigger picture to scams than we often think about, and the Nigerian Prince con highlights this perfectly. Scams, even comparatively unsophisticated ones, can still rake in huge figures a year. And what’s worse, they’re constantly evolving with the times – making use of new platforms and technologies to trick people into sharing personal details, sending money, or giving them access to secure systems.

Scams are, ultimately, an effort to use social engineering with criminal intent. And they do it very successfully. Last year Australians reported losing a record-breaking $851 million.¹ And that’s just what was reported.

Scam activity hit an all-time high during Covid, as people converted enmasse from offices to their homes – leaving the protective bubble of workplace networks and accessible IT support.

But while scam awareness is often focused on educating unsuspecting online shoppers or older digital immigrants, the threats to business are just as real² – and even more sophisticated.³ The biggest threats being: 

• False billing scams
  Scammers impersonate businesses to provide false invoices or change payment details to redirect authentic payments.
• Phishing scams
  Scammers attempt to get data or personal details to access systems or accounts. They then can either hold to ransom or use to syphon of data or funds.
• Malware and ransomware
  Perhaps most notoriously remembered as the 2017 WannaCry attack⁴ that threatened to cripple governments and corporations around the globe.
  
  

While we can’t outline every scam, nor the steps appropriate for dealing with different hustles and Princes, there are steps you and your employees can take to help identify and avoid scams – at both work and home:

1. Remember that scams exist and that everyone is a potential target. Nobody is immune, and being scam-aware is sometimes more than half the battle won.
2. Slow down and think it through, especially when working remotely. IT might occasionally grumble about things moving slowly, but nothing slows them down more than a preventable security breach.
3. Only share information with people you know. And more importantly, only share with people you know should have that information.
4. Speak up if you think something’s off. Shame plays a significant role in many scams going unreported or unrecognised. Ask questions, share experiences, and help protect each other.

1. ACCC, Scammers capitalise on pandemic as Australians lose record $851 million to scams, (June 2021) ACCC
2. ACCC, Payment redirection scams cost Australian businesses $128 million in 2020, (June 2021) ACCC
3. Juliana De Groot, Phishing Attack Prevention: How to Identify & Avoid Phishing Scams in 2021, (September 2021) Data Insider
4. Wikipedia, WannaCry ransomware attack, (November 2021) Wikipedia
5. ACCC, Protect yourself from scams, ACCC
6. CX Lavender, stay smart, safe, and secure, (2021) Westpac