Scammers’ latest tricks: From ‘flash’ messages to ex-Cyclone Alfred

by

As opportunistic scammers continue to develop new ways to target the community, Australia’s banks have issued a series of warnings in recent months.
According to the National Anti-Scam Centre’s latest Targeting Scams report, scam losses reported to key organisations hit $2 billion in 2024.

From caller ID spoofing to severe weather recovery scams and fake websites, these are the latest scams to watch out for right now.

Cyclone Alfred scam

Ex-Tropical Cyclone Alfred caused devastation for thousands of households and businesses, but it has also provided an opportunity for scammers to prey on vulnerable Australians.

In the aftermath of Alfred, Westpac and ANZ both issued warnings for severe weather scams, which involve attempts to steal personal and financial information via email, SMS, social media messages or phone calls.

Scammers may pose as insurance companies, banks, or disaster relief services and pretend to offer financial aid or exploit the generosity of members of the public wanting to donate to those in impacted areas.

According to Westpac, if you are asked to share online banking passwords, security codes or personal identification numbers, it is likely a scam. The real bank will never ask you to share these details or install software that allows access to your device.

Impersonation emails and flash SMS messages

are not new, but they continue to be effective for many scammers — and are becoming more sophisticated.
National Australia Bank (NAB) has issued a warning over phishing emails and flash SMS messages impersonating the bank and its fraud team.
These messages often claim ‘unusual activity’ has been detected on your account, and urge the recipient to call a phone number to ‘ensure the safety of your account’.

A flash message is a type of temporary SMS that appears directly on your phone screen but is not scored in your inbox. These messages are designed to capture attention and are often used for urgent alerts or time-sensitive notifications.

Fake websites

Fake websites are also being used to deceive customers and trick people into sharing personal information.

In 2024, NAB identified and assisted with the removal of 600 illegitimate websites impersonating the bank and its products. In the same period, thousands of scam website takedowns were ordered by the Australian Securities and Investments Commission.

A laptop on a red backdrop showing what appears to be a NAB bank website, but has a strange URL

NAB has issued a warning about fake websites impersonating banks. Source: Supplied / NAB

Similar to fraudulent emails and SMS alerts, fake websites are often used in phishing and investment scams. They typically use urgency and fear tactics, have authentic-looking branding, and use fake testimonials or endorsements to appear credible.

These websites can often be identified by a website URL or email address that contains odd spelling or numbers, spelling and grammar errors, and offers that appear too good to be true.

Investment scams

Commonwealth Bank (CBA) has issued a warning about text messages impersonating CommSec and stockbrokers to offer fake investment opportunities.

These text messages typically encourage recipients to contact them via WhatsApp rather than official CommSec channels.

According to the bank, the messages offer high returns with little to no risk and put pressure on recipients to act quickly to secure an ‘exclusive deal’. They then request personal details or payments to set up an ‘investment account’.

CBA advises customers not to respond to (or click on) links in unexpected messages claiming to be from CommSec and to be cautious of anybody requesting to communicate via messaging apps.

What to do if you think you have been scammed

If you think you have been scammed, you should contact your bank or card provider immediately to report the scam and ask them to freeze the card or block any transactions.
You can also report the scam to to help protect others.
If you have shared personal information, contact

Leave a Comment