FRAUD AWARENESS CENTRE 

AI generated fraud is when scammers create fake voices, videos, or messages that mimic someone’s identity, to trick you into believing they are from a loved one or a trusted company. It is getting harder to tell what is real online, so it is important to double-check before acting on anything that seems suspicious. Always verify the sender’s identity.

APP fraud is when scammers trick you into authorising a payment or transfer, usually by pretending to be someone you trust, like your bank, a family member, or a company. You think you are doing the right thing by sending payment, but the money goes to the fraudster. This can include payments for investments, purchases or even invoice redirection.

Cyber fraud is a general term for when criminals use the internet or digital tools to trick people into giving away money, personal information, or access to accounts.  That’s most of the fraud that happens online.

Hacking is when someone breaks into your computer, phone, or online accounts without permission to steal information or cause damage on your personal devices.  Strong passwords and two-factor authentication (2FA) can help prevent hacking, along with being careful about what you click on (i.e. links in emails, messages or ads).

Identity fraud is when someone steals your personal details (like your name, address, or bank information) and pretends to be you to get hold of money.  Criminals may use your information to obtain passports, make applications in your name for new bank accounts, cards and loans, or buy goods and services. Keeping your information private and secure is key to protecting yourself against identity fraud.

Social Engineering is when scammers trick or manipulate you into giving away personal information like passwords, bank details or card information. They do this by pretending to be someone you trust. Criminals often use social engineering tactics because it is easier to exploit your natural inclination to trust rather than ‘hack’ your accounts or systems.

Types of Social Engineering include:

• Phishing & Smishing – Fraudsters send fake emails (phishing) or text messages (smishing) posing as organisations like banks, parcel carriers, government bodies and more, asking victims to enter personal details or card information on a counterfeit website.
• Vishing – Fraudsters call victims, pretending to be from a trusted institution like a bank, the government, or a financial institution, and trick you into giving away personal details or sending money.
• Quishing – Criminals use fake QR codes to trick people into visiting harmful websites or giving away personal information. It is best to only scan QR codes from trusted sources.
• Social Media Scams – If you use social media it’s important to be aware of some of the most common types of scams used to trick people into giving away money, personal information, or account access:
  1. 1. Advertising Scams: fake ads promote products, services, or sales that do not exist or are poor quality. Scammers may steal your payment details or never deliver the item.
     2. Impersonation Scams: scammers pretend to be a person or company you know, someone you know, often through fake profiles or hacked accounts, to ask for money or sensitive information.
     3. Relationship Scams or Romance Scams: someone builds a fake online relationship and then asks for money, often claiming an emergency or travel issue.
     4. Phishing for Personal Details: messages or posts trick you into clicking links that lead to fake login pages or forms, stealing your passwords, bank info, or identity.
     5. Investment Scams: promises of quick profits through crypto, stocks, or business deals, often pushed by fake influencers or testimonials.
     6. Prize Scams: offers of lotteries or competitions that ask for upfront fees or personal details.
     7. Malicious Links or Downloads: posts or messages with links that install harmful software or lead to scam websites.

• Urgency: scammers often create a sense of urgency to pressure victims into acting quickly without thinking.
• Requests for Personal Information: be wary of any caller who asks for your bank details, passwords, or other sensitive information.
• Requests for Unusual Payments: treat any unexpected or unsolicited call asking for information, money or gift vouchers with extreme caution. Verify any claims the caller makes before taking any action.
• Unexpected Requests: scammers often pose as trusted people or organisations to catch you off guard and trick you into acting quickly.

• Secure Passwords: use strong, unique passwords for each account.
• Set-up 2FA: enable two-factor authentication (2FA) wherever possible.
• Install Updates: keep software and apps updated to patch security vulnerabilities.
• Avoid Public or Shared Devices: log out of accounts when using shared or public devices and avoid them altogether when possible.
• Log-in to Accounts Regularly: monitor accounts for suspicious activity.
• Automate Alerts: set-up transaction alerts on accounts where this service is available.

• Check the Email Address: hover over the sender’s name and look for subtle misspellings (for example, @micros0ft.com instead of @microsoft.com).
• Look for Generic Greetings: legitimate companies usually address you by name, not “Dear Customer.”
• Check for Red Flags: be alert for language that conveys a sense of urgency or sounds threatening.
• Inspect Links Before Clicking: hover over links to see the URL, also known as a website address. If it looks suspicious, don’t click.
• Check for Grammar and Spelling Errors: professional organisations rarely send emails with poor grammar or spelling.

• Check the URL: make sure it starts with https:// (the “s” stands for secure). Look for typos or extra characters in the domain name.
• Look for a Padlock Icon: a padlock in the address bar indicates a secure connection, but it doesn’t guarantee legitimacy.
• Check Contact Information: legitimate websites usually have a physical address, phone number, and customer service email.
• Search for Reviews or Complaints: look up the website name + “scam” or “review” to see what others say.
• Avoid Sites with Too-Good-To-Be-True Offers: extremely low prices or unbelievable deals are often signs of a scam website.

• Do Not Share Personal Details: leave your profile details incomplete and avoid posts that ask you to share personal details, like your birthday or address.
• Check Privacy Settings: review privacy settings to control who can see your posts and personal info.
• Don’t Allow Third Party Access: many social media accounts link to third party platforms. Be cautious if approving their access to your account and details.
• Check Access Logs: each social media platform allows you to check recent logins. Review this regularly to make sure no one else has access to your account.
• Report Suspicious Messages: if you notice any usual activity, report it immediately to the social media site using their help or contact us section.
• Keep Holiday Information Off Social Media: before and during your trip, fraudsters will assume you will not be checking accounts as diligently as usual.