Your phone buzzes. It’s a text from what looks like Australia Post, saying your parcel couldn’t be delivered and you need to click a link to reschedule. Or perhaps it’s an email from your bank, warning that your account has been compromised and you must verify your details immediately. Sound familiar?
If you’re seeing more of these messages than ever before, you’re not imagining it. Scam texts and emails have exploded in recent years, and they are deliberately designed to create panic — because panic makes people click without thinking.
Why these messages are so convincing
The people sending these messages are professionals. Not professionals in any honest sense, but professionals at deception. They study real bank emails, copy the logos, match the fonts, and mimic the language used by legitimate organisations. Some go even further, spoofing the phone number or sender name so the message appears to come from a trusted source.
The goal is always the same: get you to act quickly before you have time to think. Words like “urgent”, “immediate action required”, “your account will be suspended”, and “final notice” are chosen deliberately. They trigger a stress response, and when we’re stressed, we skip the careful thinking we’d normally do.
This is not a sign that you’re gullible. It’s a sign that scammers are very good at their job.
What happens when you click
When you click a link in one of these messages, one of several things can happen — none of them good.
You might be taken to a fake website that looks identical to your bank or a government agency. When you enter your login details, the scammer captures them and uses them to access your real account.
Alternatively, the link might silently install software on your device that records everything you type — including passwords, account numbers, and personal information.
In some cases, the page might ask you to call a phone number for “support”. That number connects you to a scammer pretending to be a technician, who will then try to talk you into giving them remote access to your computer.
One click. That’s genuinely all it takes.
The simple rule that protects you every time
Here’s the good news: there is one rule that will keep you safe from virtually all of these attacks.
Never click a link in an email or text to fix a problem. Go directly to the source instead.
That’s it. If you receive a message claiming to be from your bank, close the message and open your bank’s app or type your bank’s web address directly into your browser. If it’s from Australia Post or a delivery company, go to their official website and track your parcel from there. If it’s from the ATO or MyGov, log in through the official site as you normally would.
If there really is a problem with your account, you’ll see it when you log in the proper way. And if there’s nothing there? The message was a scam, and you just avoided it.
How to spot a scam message
Beyond the golden rule above, there are a few patterns that almost always signal a scam:
Urgency without context. Legitimate organisations rarely threaten to close your account within 24 hours. If a message creates extreme time pressure, slow down rather than speed up.
Requests for personal information. Your bank will never ask you to confirm your full password, PIN, or card number via email or text. Neither will the ATO, Medicare, or any other legitimate body.
Links that don’t match. If you hover your mouse over a link (without clicking), you can often see the actual web address it leads to. If it looks odd, misspelled, or nothing like the organisation’s real website, don’t click it.
Poor grammar or unusual phrasing. Scammers often work from overseas and use translation tools. Clunky sentences, odd punctuation, and unusual word choices are warning signs.
Generic greetings. “Dear Customer” instead of your actual name suggests the message was sent in bulk to thousands of people at once.
What to do if you’ve already clicked
If you’ve already clicked a link and you’re worried, don’t panic — but do act quickly.
Close the page or app immediately without entering any information. Change the password for any accounts that might be affected, starting with your email and your bank. Contact your bank directly using the number on the back of your card if you think financial details may have been exposed. If you entered information into a fake site, your bank’s fraud team can help you from there.
Building a habit that protects you
Staying safe online isn’t about being fearful of every message you receive. It’s about building one reliable habit: when something asks you to click a link to fix a problem, take five seconds to pause, then go to the source yourself.
That pause is your protection. Scammers rely on the fact that most people don’t pause. When you do, you’ve already beaten them.
For more plain-English guidance on spotting scams, safe online habits, and practical checklists you can keep handy, this is exactly the kind of content covered in depth in Cyber Safe & Confident — written specifically for Baby Boomers who want to feel genuinely secure online.
Cyber Safe & Confident is packed with plain-English checklists and real-life examples that help you spot scams before they catch you out. If you’d like a practical guide you can work through at your own pace — no tech jargon, no condescension — this is it. Get your copy here.
Your phone buzzes. It’s a text from what looks like Australia Post, saying your parcel couldn’t be delivered and you need to click a link to reschedule. Or perhaps it’s an email from your bank, warning that your account has been compromised and you must verify your details immediately. Sound familiar?
If you’re seeing more of these messages than ever before, you’re not imagining it. Scam texts and emails have exploded in recent years, and they are deliberately designed to create panic — because panic makes people click without thinking.
Why these messages are so convincing
The people sending these messages are professionals. Not professionals in any honest sense, but professionals at deception. They study real bank emails, copy the logos, match the fonts, and mimic the language used by legitimate organisations. Some go even further, spoofing the phone number or sender name so the message appears to come from a trusted source.
The goal is always the same: get you to act quickly before you have time to think. Words like “urgent”, “immediate action required”, “your account will be suspended”, and “final notice” are chosen deliberately. They trigger a stress response, and when we’re stressed, we skip the careful thinking we’d normally do.
This is not a sign that you’re gullible. It’s a sign that scammers are very good at their job.
What happens when you click
When you click a link in one of these messages, one of several things can happen — none of them good.
You might be taken to a fake website that looks identical to your bank or a government agency. When you enter your login details, the scammer captures them and uses them to access your real account.
Alternatively, the link might silently install software on your device that records everything you type — including passwords, account numbers, and personal information.
In some cases, the page might ask you to call a phone number for “support”. That number connects you to a scammer pretending to be a technician, who will then try to talk you into giving them remote access to your computer.
One click. That’s genuinely all it takes.
The simple rule that protects you every time
Here’s the good news: there is one rule that will keep you safe from virtually all of these attacks.
Never click a link in an email or text to fix a problem. Go directly to the source instead.
That’s it. If you receive a message claiming to be from your bank, close the message and open your bank’s app or type your bank’s web address directly into your browser. If it’s from Australia Post or a delivery company, go to their official website and track your parcel from there. If it’s from the ATO or MyGov, log in through the official site as you normally would.
If there really is a problem with your account, you’ll see it when you log in the proper way. And if there’s nothing there? The message was a scam, and you just avoided it.
How to spot a scam message
Beyond the golden rule above, there are a few patterns that almost always signal a scam:
Urgency without context. Legitimate organisations rarely threaten to close your account within 24 hours. If a message creates extreme time pressure, slow down rather than speed up.
Requests for personal information. Your bank will never ask you to confirm your full password, PIN, or card number via email or text. Neither will the ATO, Medicare, or any other legitimate body.
Links that don’t match. If you hover your mouse over a link (without clicking), you can often see the actual web address it leads to. If it looks odd, misspelled, or nothing like the organisation’s real website, don’t click it.
Poor grammar or unusual phrasing. Scammers often work from overseas and use translation tools. Clunky sentences, odd punctuation, and unusual word choices are warning signs.
Generic greetings. “Dear Customer” instead of your actual name suggests the message was sent in bulk to thousands of people at once.
What to do if you’ve already clicked
If you’ve already clicked a link and you’re worried, don’t panic — but do act quickly.
Close the page or app immediately without entering any information. Change the password for any accounts that might be affected, starting with your email and your bank. Contact your bank directly using the number on the back of your card if you think financial details may have been exposed. If you entered information into a fake site, your bank’s fraud team can help you from there.
Building a habit that protects you
Staying safe online isn’t about being fearful of every message you receive. It’s about building one reliable habit: when something asks you to click a link to fix a problem, take five seconds to pause, then go to the source yourself.
That pause is your protection. Scammers rely on the fact that most people don’t pause. When you do, you’ve already beaten them.
For more plain-English guidance on spotting scams, safe online habits, and practical checklists you can keep handy, this is exactly the kind of content covered in depth in Cyber Safe & Confident — written specifically for Baby Boomers who want to feel genuinely secure online.
Cyber Safe & Confident is packed with plain-English checklists and real-life examples that help you spot scams before they catch you out. If you’d like a practical guide you can work through at your own pace — no tech jargon, no condescension — this is it. Get your copy here.