3 minute read
SPOTTING AND REPORTING A SCAM
by Jay Hira, Director of Cyber Transformation at EY Kavika Singhal, Cyber Security Consultant at EY Sarah Box, Willyama Services - Project Manager
Jay Hira
On New Year’s Eve as I was sipping a cuppa, getting ready to bring in the New Year with the family, my phone rang. It was a dear friend, and their voice was shaking. They told me they had fallen for a scam and needed me to lend a hand. I could hear the fear in their voice and the noise of fireworks in the background, which made it clear they were calling from a crowded public place, probably trying to escape the chaos of the celebration.
My friend had received a call from someone claiming to be from the tax office informing them they had an outstanding debt. The caller had used convincing lingo and official-sounding jargon, and my friend was so worried about the consequences of not paying the debt that they transferred the money as requested. I could feel their fear, and knew we had to act swiftly. The rest of the New Year’s Eve celebration was a little subdued, but we went through a series of steps to control the damage and report what had happened through appropriate channels.
In early January when Australian Women in Security magazine editor Abigail Swabey reached out to check if our team was planning to contribute to Issue 13, we thought we would share this story to remind everybody to stay vigilant and be aware of the tactics used by scammers, and remind them of the channels they can use to report a scam.
Kavika Singhal
Scammers are becoming increasingly sophisticated, but their ultimate goal is to steal your money or personal information. To guard against these attempts, familiarise yourself with the following three steps.
1. Psychological awareness: protecting yourself from psychological manipulation.
• Be vigilant. Stay vigilant and think critically before responding to any requests for money or personal information.
• Identify red flags. Look out for red flags such as unrealistic offers, impersonation of authority figures, and false senses of urgency. These are common tactics used by scammers to trick their victims.
• Trust your instincts. If something seems too good to be true, it probably is. Do not be afraid to say no if you feel uncomfortable or unsure.
2. Technical measures: safeguarding your devices and online identity.
• Strong passwords. Use strong passwords or passphrases that are at least 12 characters long and include a combination of uppercase and lowercase letters, symbols, and numbers.
• Multifactor authentication. Enable multifactor authentication for extra security on your social media and email accounts.
• Regular security checks. Regularly check the security and privacy settings on your social media and email accounts to ensure they are up to date.
• Report unrecognised payments. Report any unauthorised transactions to your bank immediately.
• Avoid suspicious links or messages. Do not open suspicious links or messages from unknown sources.
3. Social awareness: spreading awareness and preventing others from becoming victims.
• Share your stories. If you are a victim of a scam or know about one, share your story with your friends and family to help prevent others from becoming victims.
• Educate others. Spread awareness and educate those around you about the dangers of scams and how to protect themselves.
• Create a safer community. Every small action can help create a safer and more informed community. By spreading awareness and sharing your experiences you can help protect others from falling victim to scams.
REPORT A SCAM Sarah Box
Spotting a scam is crucial in the fight against fraudulent activities. However, scammers are constantly evolving their tactics, making it essential for individuals, businesses and organisations to stay vigilant and informed. To help you protect yourself and others from scams, here are three important channels you can turn to for support and resources, and for reporting when you have fallen prey to a scam.
1. Australian Cyber Security Centre (ACSC).
If you have been the victim of a scam or security breach that involved the loss of personal information or funds, the ACSC is the place to go. You can log your report on their website at https://www.cyber.gov.au/acsc/report and track the progress of your case. In addition to reporting scams, the ACSC also offers valuable resources for small and medium businesses to help them educate their staff and team members on cybersecurity best practices.
2. Scam Watch. The Australian Competition and Consumer Commission (ACCC) runs Scam Watch, a website dedicated to tracking and reporting scams in Australia. You can find information on the latest scams and threats as well as real-life stories and advice on protecting yourself and your business. To report a scam, head to https://www.scamwatch.gov.au/.
3. Western Centre for Cybersecurity Aid & Community Engagement (Western CACE). If you have been the victim of a cyber incident, the Western CACE provides free services to help you respond and recover. They specialise in data breaches, ransomware, payment fraud, security controls and activations and offer a range of toolkits designed for small to medium-sized organisations. To access their resources, visit https://mycace.org/.
SUMMARY
Jay Hira www.linkedin.com/in/jayhira www.linkedin.com/in/kavika-singhal www.linkedin.com/in/sarah-b-25670667
To protect ourselves and our loved ones from scams we must educate ourselves about common scams and how to prevent them. Reporting a scam helps bring scammers to justice and prevents others from falling victim. Let us all resolve to keep our community safe by educating ourselves and reporting scams.
