ClickFit: Are you fit to click-date?
ClickFit: Romance Scams is designed to get Australians to stop their scroll, check the warning signs of romance scams, and protect their hearts and wallets from cybercriminals. Think of ClickFit as a road-safety campaign for digital dating: every online user is being urged to slow down, swerve around romance scam tactics, and stay one step ahead of cybercrime.
Why ClickFit matters?Many victims of romance scams experience feelings of embarrassment, fear and disapproval, which prevents them from coming forward. To help Australians navigate online dating safely, it's important they can recognise the warning signs of romance scams. ClickFit will make it easier for Australians to date online and click on love with caution and confidence.
Get ready to click-date in six steps:
If asked, don't move the chat to another platform
Always verify the person online
Ask to video call or meet in person
Never send money or share accounts
Watch out for romance scam tactics
Talk to someone you trust
Need help?
If you believe someone has gained access to your bank account and/or personal information, even if the scam appears unrelated to your finances, you should contact your bank immediately. A timely response can be critical.
If you have concerns about your account contact us immediately.
You can report cybercrime directly to the Australian Cyber Security Centre (ACSC) or National Anti-Scam Centre (NASC) – Scamwatch.
Find out how scams work, how to protect yourself, what to do if you’ve been scammed or report a scam to the Australian Competition and Consumer Commission (ACCC) via Scamwatch.
Change your passwords and enable two-factor authentication to protect your accounts.
As always, we remain committed to your security and privacy online. To understand how we help to keep you safe, please refer to our Security page. For more information on common scams and how to protect yourself, please visit the News section of our website.
Spike in reports of scammers impersonating Qantas to steal your personal information and money.
What’s happening
Scammers are impersonating Qantas in emails and text messages to steal your personal information and money. They create a sense of urgency to try and get you to act quickly without checking first.
Scammers will use Qantas logos and branding to make the communication look real. The email or text message will urge you to click a link to either:
claim a refund
claim a gift
redeem points that are about to expire.
If you click this link you will be directed to a scam website designed to steal any information you enter.
Qantas has been warning of these sorts of scams, which were first identified in August 2025, and encourages customers to be alert to continued scam activity. The airline does not contact customers to ask for their PINs, passwords, or one-time passwords in text messages or email.
More information can be found on Qantas.com dedicated scams page. The NASC and Qantas work collaboratively to share scam intelligence and to disrupt scams.
Who’s at risk
Anyone could be targeted by this scam. You do not need to be an existing Qantas customer or Qantas Frequent Flyer. However, people who know or suspect they have been involved in a data breach may be at greater risk of being targeted.
If you’ve been affected
Don’t be embarrassed about being scammed.
If you’ve had money or personal information stolen, contact us immediately.
If you think your accounts have been compromised, change your passwords immediately.
Monitor your bank statements and accounts for unusual activity.
If you’ve been scammed or have provided personal information, call IDCARE on 1800 595 160.
Help others by reporting to Scamwatch.
Warning signs to look out for
Suprise offers that come from unsolicited emails or messages.
Sender names, email addresses or website addresses that have been changed and look different from the legitimate domain of an organisation.
Limited time offers creating urgency such as expiring loyalty points or "missing out" on a refund or gift.
Communications that ask for your personal details, password, PIN, credit card or banking information.
Communications that ask you to click a link and enter personal or sensitive login information.
Protect yourself from scams by:
STOP. Scammers create a sense of urgency. Don’t rush to act, take your time. Never click a link, download an attachment, or enter personal or sensitive login information via a link in an email or message.
CHECK. Check whether the message or email you’ve received is really from Qantas by using your official Qantas app, visiting the Qantas website, or calling Qantas directly using a number you source yourself. Qantas updates its scams awareness website with advice for customers.
PROTECT. If you’ve given any personal information to someone you suspect is a scammer, act quickly. See more about what to do if you’ve been scammed and what steps you can follow.
Need help?
If you believe someone has gained access to your bank account and/or personal information, even if the scam appears unrelated to your finances, you should contact your bank immediately. A timely response can be critical.
If you have concerns about your account contact us immediately.
You can report cybercrime directly to the Australian Cyber Security Centre (ACSC).
Find out how scams work, how to protect yourself, what to do if you’ve been scammed or report a scam to the Australian Competition and Consumer Commission (ACCC) via Scamwatch.
Change your passwords and enable two-factor authentication to protect your accounts.
As always, we remain committed to your security and privacy online. To understand how we help to keep you safe, please refer to our Security page. For more information on common scams and how to protect yourself, please visit the News section of our website.
Source: Scamwatch
Following the recent terrorist attack at Bondi Beach, there is an increased risk of scam and financial crime activity. Scammers are known to exploit major public events by impersonating trusted organisations, creating fake donation appeals, or pressuring people into making urgent payments.
This article outlines common scam types, safe payment practices, and practical tips to help you stay protected.
Common scams to be aware of
After major incidents, scam activity often increases. Watch out for:
Fake charities and donation requests: Scammers may impersonate legitimate charities or emergency relief funds, requesting donations via text messages, emails, social media posts, or fake websites.
Fake government or compensation messages: You may receive contact from someone claiming to represent a government agency or authority, offering compensation, refunds, or financial support. These messages often ask for personal details or immediate payment.
Urgent or emotionally charged payment requests: Scammers frequently use urgency to pressure people into acting quickly without verifying the request.
Use secure payment methods
Before making a payment or donation, consider whether the payment method being requested is appropriate for the situation. Legitimate organisations do not require urgent or unusual payment methods.
Scammers often request payment methods that are hard to recover, including PayID or real-time bank transfers, international transfers, cryptocurrency, or gift cards.
Stick to trusted and secure payment methods, which often have built-in buyer protection and fraud prevention features to help safeguard your purchases.
If you are being pressured to pay quickly or in a specific way, stop and verify the request before proceeding.
How to protect yourself
Here are 4 practical tips to help you stay protected:
Verify the organisation or recipient using official websites or trusted contact details.
Do not click links in unsolicited emails, text messages, or social media posts.
Donate only through official charity channels.
Take time to check the request. Scammers often use urgency to pressure people into paying.
Need help?
If you believe someone has gained access to your bank account and/or personal information, even if the scam appears unrelated to your finances, you should contact your bank immediately. A timely response can be critical.
If you have concerns about your account contact us immediately.
You can report cybercrime directly to the Australian Cyber Security Centre (ACSC) or National Anti-Scam Centre (NASC) – Scamwatch.
Find out how scams work, how to protect yourself, what to do if you’ve been scammed or report a scam to the Australian Competition and Consumer Commission (ACCC) via Scamwatch.
Change your passwords and enable two-factor authentication to protect your accounts.
As always, we remain committed to your security and privacy online. To understand how we help to keep you safe, please refer to our Security page. For more information on common scams and how to protect yourself, please visit the News section of our website.
With Boxing Day and other seasonal sales just around the corner, online shopping is set to surge, and unfortunately, so is the risk of scams. As the holiday sales approach, the Customer Owned Banking Association (COBA) is urging consumers to remain vigilant.
“Scammers often use tactics like creating a sense of urgency to get customers to make immediate decisions and payments. Knowing that pressured shoppers are less likely to spot a scam, criminals deliberately target events like Boxing Day sales,” COBA Head of Financial Crimes and Cyber Resilience Martin Latimer explained.
According to ACCC’s Scamwatch, there have been more than $8 million in reported losses from shopping scams in 2025 so far.
To help savvy shoppers stay safe, COBA’s financial crimes team share their expert tips on how to spot, and avoid, such scams.
Beware of fake websites
Scammers often create ‘phantom’ websites that are designed to trick even the savviest shopper.
Latimer urges Australians to be extra cautious when browsing online deals, and to double-check the legitimacy of a website before you decide to make any payments.
Look out for poor website design and spelling or grammatical errors, as well as a lack of customer feedback or reviews for the seller or product.
“Scammers are experts at creating convincing fake websites that closely resemble legitimate retailers. Pay close attention to the domain name, because even a small typo could mean you're on a scam site,” Latimer advised.
Shoppers are urged to verify the site's legitimacy by looking out for a privacy policy, terms and condition, or even contact details - many fake websites don’t include this level of information.
If you are shopping on an Australian website, you can use the Australian Domain Authority’s website register to see which company or trademark registered it.
Don’t click on unsolicited links
Phishing is a tactic criminals use to steal your personal and financial information, such as login credentials or credit card details.
Scammers often send unsolicited emails or messages pretending to be legitimate retailers, delivery companies or payment processors, in an attempt to trick shoppers to click on links or download suspicious attachments.
“A common phishing tactic is a scammer sending an email or text message about a sale or delivery, urging you to click on a link. These links then lead to fake websites or download malware onto your device,” Latimer explained.
“Never open attachments from unknown senders, as they may contain malware. Instead, always go directly to the retailer’s official website.”
Use secure payment methods
Before making any online purchases, make sure your payment is protected. Check that the website shows “https” and a padlock icon to safeguard your financial information.
Latimer added: “Scammers will often encourage you to use untraceable payment methods, like wire transfers or cryptocurrency, so avoid these. Stick to trusted and secure payment methods, which often have built-in buyer protection and fraud prevention features to help safeguard your purchases.”
Trust your instincts. If something appears suspicious or too good to be true, it probably is.
Need help?
If you believe someone has gained access to your bank account and/or personal information, even if the scam appears unrelated to your finances, you should contact your bank immediately. A timely response can be critical.
If you have concerns about your account contact us immediately.
You can report cybercrime directly to the Australian Cyber Security Centre (ACSC) or National Anti-Scam Centre (NASC) – Scamwatch.
Find out how scams work, how to protect yourself, what to do if you’ve been scammed or report a scam to the Australian Competition and Consumer Commission (ACCC) via Scamwatch.
Change your passwords and enable two-factor authentication to protect your accounts.
As always, we remain committed to your security and privacy online. To understand how we help to keep you safe, please refer to our Security page. For more information on common scams and how to protect yourself, please visit the News section of our website.
From 10 December 2025, some social media platforms will be restricted, by law, to people aged 16 and over. These laws require affected platforms to take reasonable steps to prevent anyone under 16 from creating or holding accounts.
These measures are designed to protect young people from the risks and pressures associated with social media use. Information about the new restrictions is available at eSafety’s social media age restrictions hub.
There are 4 potential scams that opportunistic criminals may use to take advantage of these changes.
Who’s at risk
Young people and their families affected by the new social media age restrictions
Social media users
What the scams might look like
Platform impersonation scamsScammers may pretend to be social media platforms or age verification providers, and ask you to verify your age or risk losing your account.
Government impersonation scamsScammers may pretend to be from government or law enforcement, claiming you have breached the new laws and threaten fines unless you provide proof of age.
Fake ID scamsScammers may offer fake IDs or access to age-verified accounts for a fee, targeting young people under 16 and their families.
‘Hi Mum’ scamsScammers might impersonate young people aged 16 or older, contacting their parents or guardians to claim they need help verifying their age to use a social media platform.
If someone contacts you about the social media age restrictions
STOP. Don’t be rushed to share age verification details quickly. Don’t make any payments. No legitimate platforms are requesting payment associated with these laws.
CHECK. Make sure the person or organisation you’re dealing with is real. Find out how your social media platforms are communicating with users about the restrictions and how they are verifying users’ ages. You can visit eSafety's frequently asked questions page for more information.
PROTECT. If you’ve given any personal information, such as your age or proof of identity, or money to someone you suspect is a scammer act quickly. The What to do if you’ve been scammed page on scamwatch.gov.au has steps you can follow.
Need help?
If you believe someone has gained access to your bank account and/or personal information, even if the scam appears unrelated to your finances, you should contact your bank immediately. A timely response can be critical.
If you have concerns about your account contact us immediately.
You can report cybercrime directly to the Australian Cyber Security Centre (ACSC).
Find out how scams work, how to protect yourself, what to do if you’ve been scammed or report a scam to the Australian Competition and Consumer Commission (ACCC) via Scamwatch.
Change your passwords and enable two-factor authentication to protect your accounts.
As always, we remain committed to your security and privacy online. To understand how we help to keep you safe, please refer to our Security page. For more information on common scams and how to protect yourself, please visit the News section of our website.
The Australian Federal Police (AFP)-led Joint Policing Cybercrime Coordination Centre (JPC3) has launched ‘ClickFit’: a national awareness campaign designed to get Australians to stop their scroll, check the warning signs of scams, and protect themselves from cybercrime.
Think of 'ClickFit' as a road-safety campaign for the internet: every online user is being urged to slow down, swerve around scam links, emails, and messages, and stay one step ahead of cybercriminals. The campaign promotes safe online behaviour, helps people recognise scams, encourages incident reporting, and supports stronger cyber protection measures.
Recent findings suggest too many Australians are not adopting necessary safety measures online and too few are reporting incidents to police when targeted by cybercriminals, with reporting rates in 2024 ranging from 8% for malware to 22% for fraud and scams. According to the Australian Institute of Criminology’s Cybercrime in Australia 2024 report, many victims believed their experience was not serious enough to report or that nothing could be done. Every cybercrime report helps police track criminals, shut down their networks, assist in building intelligence on emerging cyber threats, and prevent other people from being targeted.
AFP Acting Commander of Cybercrime Operations Marie Andersson said the message for digital consumers was clear – the online world was incredible, but it was important to develop cyber tools and skills to navigate it confidently and safely.
“Research shows our online habits directly impact our risk profile and many Australians overlook simple steps to stay secure online, which can prevent their victimisation,” Acting Commander Andersson said.Real examples: In a recent case investigated by Tasmania Police, a man lost more than $400,000 to a sophisticated cryptocurrency investment scam – despite advice from his bank and police. Acting Commander Andersson said this demonstrated just how convincing and persistent scammers could be.
In another case, a mother reported to South Australia Police that she booked a family holiday for four through an online advertisement that appeared reputable, even checking the business had an ABN. However, after paying thousands of dollars for flights and accommodation, she arrived at her destination only to discover the hotel did not exist.
Despite Australians rating their tech knowledge highly, many fail to use basic protections such as strong passphrases, multi-factor authentication and regular software updates – a critical gap ClickFit aims to close.Why ClickFit matters Research shows that unsafe online behaviours can significantly increase the risk of being targeted by cybercriminals. However, there are good habits ahead - if you introduce just six steps into your everyday digital routine, this will help protect you from cybercrime, scams, and keep you safe online. This is how you become 'ClickFit'.
Get ClickFit:
Create strong and unique passphrases for every account.
Enable Multi-Factor Authentication. This adds an extra lock on your accounts, even if your password is stolen.
Install software updates on phones, apps, and computers to close security gaps.
Stay alert to emerging scams and cybercrime trends.
Stop and think before you click. Criminals rely on urgency and distraction. Don't rush.
Verify the source before you click, call or pay. Call or check directly with the legitimate organisation/trusted source before clicking on a link.
Take a moment to reflect on your online habits, have conversations with friends and family about scam safety, and help spread the message, are you ClickFit?
Need help?If you believe someone has gained access to your bank account and/or personal information, even if the scam appears unrelated to your finances, you should contact your bank immediately. A timely response can be critical.
If you have concerns about your account contact us immediately.
You can report cybercrime directly to the Australian Cyber Security Centre (ACSC).
Find out how scams work, how to protect yourself, what to do if you’ve been scammed or report a scam to the Australian Competition and Consumer Commission (ACCC) via Scamwatch.
As always, we remain committed to your security and privacy online. To understand how we help to keep you safe, please refer to our Security page. For more information on common scams and how to protect yourself, please visit the News section of our website.
