Back
A hotel receptionist logs into a familiar system at the start of a shift. A job seeker replies to what looks like a real message from a well-known company. A small business owner clicks a link that appears to come from a regular supplier.
None of them think they could fall for a scam. They’re busy, capable, and just going about their normal work.
That’s exactly the point.
Modern scams don’t go after careless people. They use trust and urgency to catch us when we’re on autopilot. In payments and digital services, I see these patterns all the time. They succeed because they target human behaviour, not just technology.
How scams actually work today
Most scams don’t look suspicious at first. They often appear as:
- A login page you’ve seen many times before
- A job message that mentions real companies and real people
- An email that seems routine and part of daily work
- A request that feels urgent but still reasonable
Behind the scenes, scammers use familiar tricks:
- Impersonation of real brands, platforms, or colleagues
- Creating urgency by saying you must act now, or risk losing access, money, or an opportunity
- Building trust by using the right logos, familiar words, and realistic steps
- Redirecting you to unofficial channels like WhatsApp or fake websites
- Tricking you into giving up your login details or making payments by making these requests seem normal
In the payments world, we see this all the time: fake login pages, lookalike domains, job scams that move from LinkedIn to messaging apps, and malware that quietly steals passwords in the background.
The goal is always the same: to get you to act before you have time to think.
The simplest way to reduce your risk
There’s no single tool that makes you completely safe from scams. But there are habits that can greatly lower your chances of becoming a victim.
Start with these:
- Use two-factor authentication (2FA) wherever you can. Even if someone steals your password, it helps keep attackers out.
- Slow down around anything involving money, logins, or personal data. Speed is the scammer’s best friend.
- Check the website address before you log in or pay. The domain is more important than the logo.
- Keep your devices updated and secure. Some scams can lead to malware quietly stealing your information.
Here’s a simple mental habit I recommend: Stop. Pause. Think. Respond. If something is pushing you to skip those steps, that’s a signal, not an inconvenience.
The red flags most scams can’t hide
No single sign proves something is a scam, but if you notice several at once, you should always pause:
- Pressure to act urgently or keep things secret
- Requests for money, “fees,” or “deposits” to unlock something
- Being pushed off official platforms and onto messaging apps
- Website addresses or email domains that are slightly off
- Requests for one-time codes, passwords, or login details
- Offers that seem unusually generous for very little effort
Job scams are a good example. Real companies don’t recruit through WhatsApp and then ask for payments, crypto deposits, or “activation fees.” That’s not how real hiring works, even if the branding looks convincing.
If you think you’ve been scammed, do this first
As soon as you realise something is wrong, acting quickly is important.
- Stop talking to the scammer right away. Don’t argue, don’t explain, and don’t keep the conversation going.
- Contact your bank or payment provider immediately. They might still be able to limit the damage.
- Save any evidence you have, like screenshots, links, email addresses, phone numbers, and transaction details.
- Report the account or message on the platform where it happened, such as email, LinkedIn, or WhatsApp.
- Report it to your local authorities or national fraud reporting service.
The hard truth is that not all money can be recovered. But acting quickly gives you the best chance and helps prevent the same scam from affecting someone else.
Why smart people still get caught
One of the hardest things about scams is the shame people feel afterwards. I’ve seen skilled, security-aware professionals fall for well-crafted attacks.
It’s not because they’re careless. These scams are made to look normal. They copy real workflows, real language, and real brands. With AI now creating even more convincing messages and websites, the line between real and fake is getting harder to spot.
The right response isn’t to blame anyone. It’s to build better habits, take more pauses, and verify more often.
The one rule worth remembering
If there’s one thing I hope people remember, it’s this:
Scams don’t happen because people are foolish; they happen because people trust. Don’t blame yourself. Instead, give your trust intentionally and only to those who’ve earned it.
