Seniors Online logo

Be scam savvy

Learn more about scams, and how to avoid them

Australians lost a record amount of more than $2.7 billion to scams in 2023, with people over 65 reporting the highest losses. In addition to the financial cost, scams can have a devastating emotional impact on victims.

Be aware – scammers are impersonating government departments and trusted businesses.

This may be communicated by suspicious emails, messages and phone calls. Cyber criminals may try to make contact with you and ask that you hand over your private information or provide access to your computer.

If you received a call out of the blue from the Tax Office saying you had a tax debt that you had to pay immediately or be arrested, what would you think?
If Telstra called you and said there were internet problems in your area and they needed remote access to your computer in order to help you otherwise they would disconnect your service, what would you do?

While it would be understandable if your initial reaction might be fear or panic, Australians are being urged to ‘Stop and check – is this for real?’

In these scams, scammers pretend to be from a government agency or well-known, trusted business and use threats to pressure or scare you into giving them money sharing your personal information or downloading remote access software. They may threaten that you will receive a fine, that you will be charged additional fees, that your internet will be disconnected, that the police or debt collectors will come to your home, or that you will be taken to court, arrested or even deported.

These scammers and their threats can seem genuine and frightening. They make you feel as if you’ve done something wrong or that there’s some urgency and you must do what they say immediately or suffer the consequences.

Older Australians have been particularly vulnerable to these scams in the past. So if you’re contacted unexpectedly and threatened by someone that says they’re from a government agency or trusted business, always consider the possibility that it may be a scam – then stop and check if it’s for real.

Protect yourself and your data online:

Take care when sharing personal information online or by email. Verify websites and email recipients before sharing any personal or payment information. Read more tips on the Office of the Australian Information Commissioner websiteExternal Link .

Use strong and unique passwords and set up multi-factor authentication to protect your online accounts.

Monitor your accounts and devices for any unusual activity or unexpected communication.

Don’t open suspicious texts, pop-up windows or click on links or attachments in emails – just delete them. These could infect your computer with malware.

If you receive contact from someone claiming to be from a telecommunications company, a technical support service provider or online marketplace, hang up. Verify the identity of the contact through an independent source, such as a phone book or online search, then get in touch with them to ask if they contacted you. Don’t use the contact details provided by the caller or in the message sent to you.

Never send money, give your banking or credit card details or other personal information to anyone you don’t know or trust, and never by email or over the phone.

Know that a government agency or trusted business will never ask you to pay them with gift or store cards, iTunes cards, wire transfers or Bitcoin.

Never give anyone remote access to your computer if they’ve contacted you out of the blue – whether through a phone call, pop up window or email – even if they claim to be from a well-known company like Telstra.

If you have lost money or given your personal details to a scammer, there are steps you can take straight away to limit the damage and protect yourself from further loss:

If you’ve sent money or shared your banking or credit card details, contact your financial institution immediately. They may be able to stop or reverse a transaction, or close your account.

If you suspect you have been impacted by a data breach, there are additional measures you can take to protect yourself from any potentially fraudulent activity. These include:

  • changing your online account passwords as a matter of good security practice – make sure you have strong passwords that you haven’t used for other accounts
  • avoiding opening unsolicited attachments
  • never giving anyone your password or financial details even if they sound plausible.

If you’ve given your personal information to a scammer or believe a scammer has access to your information, free support is available from IDCAREExternal Link . IDCARE is Australia and New Zealand’s not-for-profit national identity and cyber support service. IDCARE can work with you to develop a specific response plan to your situation and support you through the process. For support visit:

Scammers are often based overseas, it is extremely difficult for government agencies to track them down or for law enforcement to take action against them. So take the time to warn your friends and family about these scams.

For more information about these scams, where to get help or to report a scam, visit the Scamwatch websiteExternal Link

Scammers use a number of different techniques to allure people. Below are some examples to be aware of.

  • Rosa, was called by someone claiming to be from Centrelink. They told Rosa she had not replied to their letters requesting information so she had to pay a $300 penalty. Rosa had never received any such letters.

    The caller spoke very quickly and told Rosa that her file had now been sent to the Canberra office and she would need to buy $300 of iTunes cards to cover the penalty for not responding to their letters. If Rosa did this, her file would be returned to her local Centrelink office. If she didn’t, ‘Centrelink’ threatened to stop her pension altogether.

    Rosa didn’t know what iTunes cards were so she asked if she could pay the penalty by cash or credit card. The caller said that wasn’t possible and harassed Rosa into buying the iTunes cards by telling her where to go to get them and how to get them. Rosa finally agreed and was told that someone would call her back for the codes on the backs of the cards. Rosa was also given a number, supposedly in Centrelink’s Canberra office, to call if she had any concerns. And she was told she had an appointment at her local Centrelink at 11:00 am the following Monday with a ‘Sylvia Johnson’ to discuss the situation.

    After talking to her daughter-in-law, Rosa realised this was a scam, however, she had given her pension number to the caller which she then reported to Centrelink.

  • Please be aware that cyber criminals may try to make contact you and ask that you hand over your private information. This may be communicated by suspicious COVID-19 related emails, messages and phone calls.

  • Scammers will pose as either agents of legitimate well-known charities or create their own charity name. This can include charities that conduct medical research or support disease sufferers and their families. They may also pose as individuals needing donations for health or other reasons. Scammers may also play on your emotions by claiming to help children who are ill.

    Avoid any arrangement with a stranger that asks for up-front payment via money order, wire transfer, international funds transfer, pre-loaded card or electronic currency, like Bitcoin. Legitimate charities don’t solicit donations in this way.

    You can ensure a donation is going to a legitimate charity by phoning them directly or making a donation via the charity's website. You can check a charity is legitimate by searching for them on the Australian Charities and Not-for-Profits Commission (ACNC) website: www.acnc.gov.au/charityExternal Link .

  • Anthony received an email apparently from the Australian Federal Police as it featured the agency’s logo. The email said that he had been issued with an infringement notice for a violation such as speeding, illegal parking or toll evasion. It also stated that if Anthony didn’t pay the fine within 28 days, enforcement action would be taken and he could be prosecuted in the Magistrates’ Court. The email Anthony received included a file with the actual infringement notice and specific details of his violation which he tried to download. However, the file was corrupted. His computer security software alerted him there was a security threat and disabled the file.
  • Olive received a call from a woman who claimed she was from Telstra, saying her internet would be cut off within two hours as ‘Telstra’ had identified a number of unauthorised logins from overseas on her internet. Olive was then passed on to a technician named ‘Chris’ who made her log on to her computer and showed her the hackers’ supposed logins.

    ‘Chris’ told Olive that her bank accounts were in danger of being used by the hackers and that they had to be stopped. To help ‘Telstra’ do this, ‘Chris’ asked Olive for her bank account and credit card details and to log in to both of her accounts online, which Olive did.

    ‘Chris’ said he’d deposit $1600 into Olive’s bank account which she had to use to buy iTunes cards as soon as possible. Olive saw the money had been transferred into her account so she went and bought the cards. As instructed, she scratched the back of the cards and ‘Chris’ took a photo of them through Olive’s webcam.

    ‘Chris’ said he’d publish the codes online to help ‘Telstra’ track the hackers’ movements. He also instructed Olive not to use her computer until he called her back the next morning. Olive became suspicious at this point, so she contacted her bank and they confirmed that $1600 had not been deposited into her account and her account was now overdrawn. Her bank cancelled her credit card immediately.

  • Eliza received a call from someone saying they were from the Australian Taxation Office and that she was being charged with tax fraud. The ‘Tax Office’ told Eliza she owed them $4,900 and if she didn’t pay an initial instalment of $500, a warrant for her arrest would be issued and she could face jail.

    Eliza immediately panicked as she is a single parent from the UK with a 10-year-old son and no other family in Australia. The ‘Tax Office’ said she had to make a decision whether to pay now or be arrested within 24 hours. So Eliza gave the ‘Tax Office’ her credit card details. She was then told she’d receive a text message with a passcode which she had to provide so the arrest warrant could be stopped.

    Eliza was also told a taxation officer would visit her the next day with all the relevant paperwork advising how to pay back her full debt. However, as soon as Eliza gave the ‘Tax Office’ the passcode, she ran to the bank as she had begun to worry she’d been scammed. The bank teller confirmed that two withdrawals had been made from her account. Eliza’s conversation with the ‘Tax Office’ lasted over an hour and in that time, she was in complete shock and disbelief that her passport could be cancelled and that she could be deported.

  • Georgia received a phone call supposedly from ‘Telstra’ and was told that her new NBN was being used illegally without her knowledge. This situation had been flagged as urgent by ‘Telstra’ and needed to be fixed immediately

    Georgia was asked to download the Team Viewer software so a ‘Telstra’ technician could remotely access her computer and look at the security settings to fix the problem. ‘Telstra’ also said it would set up an additional password for extra security on Georgia’s computer.

    While in Georgia’s computer, the technician blanked the screen so she couldn’t see what he was doing but he stayed on the phone with her explaining every step. He accessed Georgia’s emails and hacked into her PayPal account, changing the settings so that a log-in would no longer be required each time a purchase was made.

    The technician purchased gift vouchers from the United States, telling Georgia the vouchers were for security programs needed on her computer and they would be fully refunded by Telstra. After the technician ended the call, several other purchases were made from gaming stores in the US.

    Georgia turned off her computer when she realised these unauthorised purchases had been made. But then ‘Telstra’ called her back asking her to switch her computer back on. Georgia is now receiving daily calls from ‘Telstra’ Security which is apparently another division of Telstra. She is also receiving calls from private numbers claiming to be PayPal and asking for her pin number. As well as the loss of some personal information, Georgia lost $600 from the unauthorised purchases.

  • Alex received a recorded message that the Australian Taxation Office had tried to contact him many times and that it had sent him letters which had been returned, unopened. Because of this, the ‘Tax Office’ was now taking legal action against Alex for tax fraud and evasion which would result in a warrant for his arrest.

    Alex called back the ‘Tax Office’ and spoke to ‘James who provided his badge number and a case number. ‘James’ confirmed the ‘Tax Office’ had sent Alex letters to a particular address, but Alex said he hadn’t lived there for about a year. ‘James’ told Alex he was about to be arrested and lose his assets as he owed taxes. ‘James’ said Alex could end up in jail for up to 10 years.

    Alex believed what he was being told. ‘James’ then told Alex that he could stop all of this from happening if he set up a tax debt repayment plan. All that was needed was an up-front payment of $500, then a regular payment plan could be organised with a taxation officer. Alex was also warned that this could be done in one of two ways – he could pay the ‘Tax Office’ privately, otherwise, the situation would become public knowledge and the ‘Tax Office’ would publish his name and offence in the newspaper.

    He followed the instructions he was given. He went to Coles and bought $500 of iTunes gift cards. ‘James’ then said they would need another $500 of iTunes cards for the taxation officer’s expenses so Alex bought these additional cards as well.

  • Ali received a call on his landline from someone who worked at the Immigration Department to advise there been some changes to the immigration rules. Because of these changes, ‘Immigration’ needed new forms and because they hadn’t received the required forms from Ali, they were now taking legal action against him.

    To stop this legal action, ‘Immigration’ told Ali to go to a store and buy 24 iTunes cards, worth $100 each, then scratch each of them and read out the codes immediately. The caller threatened that if Ali didn’t follow the instructions, he would be taken into custody and face two years’ imprisonment, along with an $88,000 fine.

    He was also threatened with deportation and told that his child would be taken away from him. Ali was told that he wasn’t allowed to contact anyone, not even his wife, via any means of communication and to keep this discussion confidential. The caller gave Ali his name, badge ID and a case number, so Ali believed the call was genuine and bought the iTunes cards and recited the codes.

  • Early one morning, Maya received a call from a ‘David Wilson’ who said he worked for ‘Australian Immigration’ in New Delhi. He said when Maya was leaving India, she gave the wrong date of birth on her immigration form, so she was going to be deported back to India within two hours.

    ‘David’ asked Maya to pay $930 which would mean she could be allocated a lawyer to fight her case while she remained in Australia. Maya was unsure whether to believe ‘David’ but he recited the details that she had provided to the Immigration Department for a visa. He also told Maya to go to the Department of Foreign Affairs and Trade website and check the phone number there to see if she was receiving the call from the same number – and the numbers were the same.

    Maya became very scared and believed him. ‘David’ then convinced Maya to make a transaction via Western Union. He remained on the phone with her for about three hours and that entire time, prohibited her from putting his call on mute, or talking to anyone in a language other than English. After Maya transferred the $930, ‘David’ asked for payment of a ‘case closing fee’. Maya said she couldn’t do that because she didn’t have any more money. ‘David’ made several more attempts but when he failed to get any more money from Maya, he admitted that he had just scammed her.

  • Scammers have pretended they are calling from Australia’s Department of Immigration advising people that some immigration rules have now been changed and they need new forms which have not been submitted and they were now taking legal action against them.

    In order to avoid this legal action they could purchase iTune cards and scratch the back of them and read the codes to the scammers. If they did not do this the scammers would tell them that they would be taken into custody and face two years in prison, along with an $88,000 fine. They have also been threatened with being deported and have their children taken away from them. The scammers tell people that this is a highly confidential matter and they are not allowed to talk to anyone about this, not even a family member.

    Scammers have also told people that they have provided wrong details on their immigration form and would be deported in two hours. They tell people they can avoid this by making a payment and will be allocated a lawyer to fight their case. These calls can last for hours and they don’t allow people to mute the phone or speak to anyone else while they are on the phone.

  • Coles advises customers to be aware of text messages, phone calls, websites, competitions and other unsolicited contact that use the Coles brand without Coles’ permission or which promote Coles Gift Cards or other gift cards in an attempt to appear legitimate.

    These offers are predominantly attempts to collect your personal details, financial information or request payment for goods or services. Coles will never request personal or banking details in unsolicited communications and legitimate businesses or government agencies will never request payment in gift cards.

    For more information refer to: www.coles.com.au/customer-service/scam-warningExternal Link .

  • Consumers are being contacted by scammers claiming to be from a government agency or business and urged to purchase iTunes Gift Cards at their local Coles store to pay for items such as a tax debt/fine to avoid arrest, an outstanding bill for goods or services or a ‘release fee’ to receive and additional pension payment. They are then requested to provide the 16-digit code (from the back of the card) over the phone. Many callers are claiming to be employees of the ATO, Centrelink, Telstra or Microsoft.

    Please be mindful of these types of requests, no matter how convincing they sound, only a scammer will ask for iTunes gift cards as payment.

    For more information refer to: www.coles.com.au/customer-service/scam-warningExternal Link .

  • Consumers may receive emails that appear to be from a trusted Coles email address, offering the opportunity for you to ‘win’ a gift card or voucher which can be collected in store.

    These scams are sent in an attempt to obtain personal information such as a bank account or credit card numbers as well as passwords.

    For more information refer to: www.coles.com.au/customer-service/scam-warningExternal Link .

  • Customers may receive emails that appear to be from a trusted Coles email address, advising that they have in fact ‘won’ a high value gift card. These scams are sent in an attempt to obtain personal information such as a bank account or credit card numbers as well as passwords.

    In most cases, once you click on the link within the email, you are redirected to a ‘phishing site’ where they will request your personal information and use this to carry out fraudulent activities.

    For more information refer to: www.coles.com.au/customer-service/scam-warningExternal Link .

  • Computer takeover scams are where scammers impersonate a well-known business over the phone or via text message to try to gain access victims’ computers. These scammers often try to create a sense of urgency and ask people to download remote control software. Sometimes they will claim your computer has a virus. Once the software is downloaded and the scammer has control of the computer or device, they ask people to log into secure applications such as emails, internet banking or PayPal accounts. With access to these applications or the information they contain, scammers will try to impersonate their victims or steal their money. So what should you look out for? Scams of this nature often come out of the blue. They might start with an unexpected phone call, SMS, email or pop up saying you’ve been billed for a purchase you didn’t make, your device has been compromised, or your account has been hacked. If it doesn’t sound right – hang up. If you are not sure, hang up and independently source the contact details for the organisation to contact them directly yourself.

  • Have you received a text message or email about online shopping you never ordered? Or maybe a weird text message saying you have a voicemail with a strange looking website link? ‘Flubot’ scams made their way to Australia in 2021 after rapidly spreading overseas. These messages ask you to click on a link to download something or to visit a website. The message might say you have a package awaiting delivery, or a voicemail waiting for you, but the message is fake. These messages usually include a link, which almost always has 5-9 random letters at the ebd. This link directs victims to download malicious software called ‘Flubot’. If you receive one of these messages – delete it. Do not click on the link.

  • Known as “Hi Mum” or “family impersonation” scams, victims are contacted - most often through WhatsApp - by a scammer posing as a family member or friend.

    The scammer will claim they have lost or damaged their phone and are making contact from a new number. Then, once they have developed a rapport with their target, the scammer will ask for personal information such as photos for their social media profile or money to help urgently pay a bill, contractor or replace the phone.

    These requests continue the ruse of a lost or broken phone with the justification that the funds are needed because they can’t access their online banking temporarily.

    Some messages will simply say “it’s me,” while in other cases the scammers appear to have contact information and use the name of the person they are impersonating.

    “If you’re contacted by someone claiming to be your son, daughter, relative or friend, start by calling them on the number already stored in your phone to confirm if it’s no longer in use. If they pick up – you know it’s a scam,” Ms Rickard said. “If unable to make contact, you should try a secondary contact method to verify who you’re speaking to. If you still can’t contact your family member or friend, consider asking a personal question a scammer couldn’t know the answer to, so you know the person you are speaking to is who they say they are. Above all, never send money without being absolutely sure who you are sending it to,” Ms Rickard said.

Reviewed 06 May 2024

Scamwatch

Scamwatch is run by the Australian Competition and Consumer Commission (ACCC). It provides information to consumers and small businesses about how to recognise, avoid and report scams.