iscover
iscover 
NAB revealed some “common red flags” affecting bank customers in 2025. These include:
- Unexpected contact via phone call, text message, social media, messaging apps, or email.
- Sense of urgency to make a payment, or avoid a problem like having explicit images shared, or missing out on an investment opportunity or items in hot demand.
- Requests to transfer money to a ‘safe’ account.
- Consequences if you don’t take action.
- Opportunities or prices sounding too good to be true.
- Requests to give someone access to your device or download apps or software.
- Being directed to click a link via a social media ad or sponsored search result.
- Spelling mistakes in text messages, emails, and URL addresses and face and mouth movements in a video don’t match the speech, or have unusual pauses, pitch, or multiple accents.
Mortgage broker and finance manager at Five Dock Finance, Paul Boykos, recognises just how important security is when dealing with finances.
“We’re literally custodians of all of our customers’ most valuable personal information – bank details, account numbers, IDs. All our major partners have shifted to two-factor authentication in the last 12 months and that’s what really prompted us to do it as well,” said Boykos.
“Our business partners introducing two-factor authentication has really been the fuse that lit this for us too. While it can be difficult and annoying, it really does help to improve security. [Cyber attacks are a] real thing and it’s horrible.”
5 scams to watch out for
With just how important cyber security is for protecting finances, NAB listed five scams everyone should be aware of in 2025.
AI-driven scams
AI impersonation of recognisable figures is common, said NAB: “While we haven’t had any reports of our customers being impacted by sextortion using AI-generated images, we’re watching this issue overseas given sextortion can have devastating consequences,” said NAB executive, group investigations, Chris Sheehan.
To protect yourself, NAB said:
- Treat investment opportunities backed by high-profile figures with scepticism and do your own research.
- Access investment opportunities via details you’ve found and verified yourself rather than clicking on ads on social media or sponsored search listings.
- If you aren’t sure about the legitimacy of a payment request, call the person back – even if you know them – directly using details you found yourself.
- Set your social media profile to private and review friend requests and connections.
- Stop all contact if someone threatens to release images if you don’t make a payment. Report the matter to the eSafety Commissioner and your bank if you have sent a payment.
Cryptocurrency investment scams
The increasing hype around cryptocurrency has allowed criminals to take advantage of those navigating unknown territory.
“Older Australians may not be as familiar with the digital currency and terms like digital wallets and tokens, while under 50s are the fastest growing age group to lose money nationally to crypto investment scams,” Sheehan said.
NAB said that people should exercise caution by:
- Confirm the person you’re talking to has an Australian Financial Services (AFS) licence and contact them on details you’ve found independently.
- Look for the cryptocurrency exchange’s registration number on its website. Digital currency exchanges in Australia must be registered with AUSTRAC.
- Look for reviews of the investment offer and company, including searching for the offer and word “scam”.
- Search ASIC’s investor alert list, which includes suspicious companies, businesses, and websites.
Bucket list scams
Big events such as concerts or sporting matches can often get people into a FOMO frenzy. This can often be a prime target for scammers.
“We anticipate ticket scams when Oasis and Metallica tour, similar to those seen with Taylor Swift and Coldplay in 2024,” said Sheehan.
NAB said to protect yourself, you should:
- Look for sold-out tickets through official resellers, instead of on social media.
- If possible, pick up the phone and talk to the seller or organisation directly before sending money.
- Review the seller or organisation’s social media profile in detail to see when it was created, how active they are, and if they have any reviews.
- Do a reverse image search. If you see the same image of tickets, visa authorisations, or proof of purchase on other websites, it’s probably a scam.
- Consider how you pay. Private sales offer limited, if any, protection if the items don’t exist.
Remote access scams targeting businesses
A more sophisticated form of scamming, remote access involves criminals impersonating a bank, telco, government department, or tech company. Then, they talk their way into gaining remote access to devices where they can siphon information.
Sheehan said: “We anticipate criminals will continue to target Australian consumers and businesses with remote access scams in 2025. Losses often run into tens of thousands of dollars, compared to other scams where the criminals might net $500 or $1,000.”
To protect themselves, consumers should:
- Never give an unexpected person remote access to your computer or online bank accounts.
- Never share any SMS codes your bank has sent.
- If you aren’t sure if contact is legitimate, hang up or delete the text message or email. Contact the organisation using the details you have found yourself.
- Update computer software and apps regularly.
Phishing scams
A more well-known form of scamming, phishing involves what NAB refers to as “spray and prey technique.” Criminals make contact via text, email, or phone pretending to be from a trusted organisation like a bank, telco, government department, or even family and friends.
“An emerging trend is text messages urging people to use their supermarket or similar retail rewards points before they expire. These heartless criminals are preying on cost-of-living pressures,” added Sheehan.
NAB said to protect yourself:
- Be very suspicious of unsolicited contact. If in doubt, delete it or hang up.
- Know NAB will never ask you to provide your personal or banking information through a link.
- Know NAB will never send you an unexpected text message with a link in it.
- Keep your phone and computer updated with the latest version of apps and trusted anti-virus software.
ISCOVER 
