Cybersecurity Icon
Mobile Icon
online scams australia

The Biggest Online Scams Targeting Australians Right Now

Look, I’ve been writing about digital marketing and tech long enough to know that where there’s money online, there’s someone trying to nick it. And right now, Australian internet users are copping it from all angles.

The thing is, these scams aren’t the clumsy “Nigerian prince” emails your mum used to forward you with seventeen exclamation marks. They’re sophisticated, targeted, and frankly, they’re getting bloody good at what they do.

So let’s talk about the scams currently doing the rounds in Australia, because pretending they don’t exist won’t make them go away.

The MyGov Impersonation Scam

This one’s particularly nasty because it preys on something Australians actually need to use regularly. You’ll get a text message, perfectly formatted, claiming to be from MyGov. It’ll say something about a pending payment, a tax refund, or an urgent Medicare update.

The link looks legitimate. The language is spot-on. And if you’re rushing between meetings or wrangling kids, you might just click it.

Here’s the thing: MyGov will never text you asking you to click a link to verify your details or claim a refund. Never. If you get one of these messages, delete it immediately. If you’re genuinely concerned about a government payment, go directly to the MyGov website yourself. Type it into your browser, don’t click any links.

And speaking of clicking dodgy links, it’s worth noting that Australian workers clicking on phishing links has doubled in just nine months. We’re getting worse at this, not better.

The “Hi Mum” and “Hi Dad” Scam

I’ll be honest, this one makes my blood boil. Scammers send WhatsApp or text messages pretending to be your child, claiming they’ve lost their phone and need you to urgently transfer money.

The Australian Competition and Consumer Commission reported that Australians lost over $7 million to this scam in recent years, and it’s still going strong. The psychological manipulation here is brutal: they’re banking on parental instinct overriding common sense.

The solution? Set up a code word with your kids. Something completely random that only you’d know. If someone claims to be your child and can’t provide it, you know it’s dodgy.

The Gift Card Payment Scam

This deserves its own section because it’s become one of the most common payment methods scammers demand. Whether they’re impersonating the ATO, claiming to be tech support, or running a romance scam, they’ll eventually ask you to buy Apple gift cards, Google Play cards, or Steam vouchers and send them the codes.

The Apple gift card scam has become such an epidemic that Australians are losing millions, and yet people still fall for it.

Here’s your simple rule: no legitimate organisation will ever ask you to pay them in gift cards. Not the tax office, not your electricity provider, not tech support. If someone asks for gift card payment, it’s a scam. Full stop.

Investment Scams Featuring Australian Celebrities

Margot Robbie, Dick Smith, Andrew Forrest, Gina Rinehart – scammers are creating fake Facebook ads and news articles featuring these celebrities supposedly endorsing cryptocurrency or investment platforms. They’re not. These are fabricated endorsements designed to build trust before stealing your money.

I’ve seen these ads myself, and they’re convincing if you’re scrolling quickly. They’ll use real photos, professional layouts, and even fake news website URLs that look almost identical to legitimate outlets.

The red flag? If it sounds too good to be true (guaranteed returns, celebrity-backed secrets, limited time offers), it absolutely is. No legitimate investment opportunity guarantees returns, and Australian celebrities aren’t spending their time promoting get-rich-quick schemes on Facebook.

Remote Access Scams

This is the one where someone claiming to be from Telstra, Microsoft, or your bank calls saying there’s a problem with your computer or account. They’ll ask to remotely access your device to “fix” the issue.

Once they’re in, they can install malware, steal your banking credentials, or hold your files ransom. And because you’ve given them permission, your antivirus software won’t stop them.

The telltale sign? Legitimate companies don’t cold-call asking for remote access. If someone does this, hang up. If you’re worried there might actually be an issue, call the company back using a number you’ve found yourself on their official website.

Romance Scams with a Cryptocurrency Twist

The classic romance scam has evolved. Now, after building trust over weeks or months, scammers aren’t just asking for money directly. They’re introducing victims to “investment opportunities” in cryptocurrency or forex trading.

They’ll show you fabricated trading platforms with fake profits accumulating in your account. You might even be able to withdraw small amounts initially to build trust. But when you try to withdraw your full balance? Suddenly there are fees, taxes, or technical issues that require more money to resolve.

According to the ACCC, romance scams cost Australians over $40 million annually. The cryptocurrency angle makes recovery nearly impossible.

Marketplace Scams

Facebook Marketplace and Gumtree have become hunting grounds for scammers. The common ones include:

Fake rental listings where scammers post properties they don’t own, collect deposits, and disappear. They’ll have excuses for why you can’t inspect the property (they’re overseas, the tenant hasn’t moved out yet), and they’ll pressure you to secure it quickly.

Overpayment scams where someone “buying” your item sends a cheque or money order for more than the asking price, then asks you to refund the difference. The original payment bounces, and you’re out of pocket.

Non-delivery scams where you pay for an item that never arrives, usually using payment methods with no buyer protection.

The safest approach? Meet in person, inspect goods before paying, and use secure payment methods with buyer protection. If someone’s pushing for bank transfer or gift cards, walk away.

What Actually Works to Protect Yourself

After writing about online security for years, here’s what I’ve learned actually matters:

Enable two-factor authentication on everything important. Yes, it’s annoying. It’s also effective.

Don’t click links in unexpected messages, even if they look legitimate. Go directly to the website yourself.

Verify requests through a different communication channel. If someone texts claiming to be your bank, call the bank using the number on their website.

Be suspicious of urgency. Scammers create artificial deadlines to bypass your critical thinking. Legitimate organisations can wait 24 hours while you verify.

Use a password manager. Reusing passwords across sites means one breach compromises everything.

The Uncomfortable Truth

These scams work because they’re designed to exploit normal human psychology: trust, fear, greed, love, and the desire to help. There’s no shame in being targeted, and there shouldn’t be shame in admitting you’ve been caught out.

The reason scammers keep using these tactics is simple: they’re profitable. Until they stop working, they’ll keep evolving and improving.

Your best defence isn’t paranoia, it’s healthy scepticism combined with basic security practices. Take the extra thirty seconds to verify. Ask the awkward questions. Trust your gut when something feels off.

Because the scammers are counting on you being too busy, too embarrassed, or too trusting to question them. Don’t give them that advantage.

Recent Articles

retrogaming

Why Australia Is Obsessed With Retro Handhelds Again

stealing games

What Happens to Online Games When the Developers Vanish?

Callcenter Robot

The Quiet Revolution of Australian Contact Centres

doomscrolling

How to Stop Doomscrolling

dvd compatibility

DVD Regions, Blu-ray Codes, and the NTSC/PAL Puzzle: A Guide for Aussie Collectors