We believe cybersecurity matters for everyone — regardless of your age or experience level. Cybercriminals target everyone equally, and no one is immune. As tax season approaches, we typically see a significant increase in phishing emails, phone calls and deceptive text messages pretending to be from trusted sources like banks, government agencies, and Australia Post. Recently, scammers impersonating Australia Post sent deceptive messages to more than 600,000 Australians.
Too many Australians fall victim to these attacks — over 552,000 last year alone — and many mistakenly believe they can easily spot scams. However, advances in AI are making it increasingly difficult to distinguish between legitimate and fraudulent communications.
This tax season and beyond, staying safe online requires continuous vigilance. By using unique passwords, activating Multi-Factor Authentication (MFA), and verifying unexpected communications, you significantly reduce your risk of falling victim to cybercrime.
To protect your personal and financial information, follow these essential cybersecurity practices:
Always use unique passwords: Ensure each online account has a distinct, strong password. Using the same password across multiple accounts dramatically increases your risk. If one account is compromised, all others become vulnerable. Unique passwords for every account greatly enhance your online security.
Activate MFA: MFA provides an essential extra security layer by requiring additional verification beyond your password. Even if a hacker steals your password, MFA can prevent unauthorised access by sending a unique code to your mobile device or requiring another verification step.
Stay vigilant by following these simple but powerful guidelines:
Be sceptical of unsolicited messages: Always treat unexpected texts or emails with suspicion. If you receive a message you’re not anticipating, verify its authenticity directly with the sender through contact details you already know and trust — not through details provided in the suspicious message.
Validate before you click: Hackers often target email accounts first, using compromised accounts of people you know to send malicious emails. Even if the message seems to come from someone familiar but you weren’t expecting it, don’t click on links or download attachments without verifying first.
Seek support if needed: Remember, support is always available. Reach out directly to the trusted financial institution or your financial adviser if you are unsure.