Australians are facing a new and alarming wave of cybercrime, with scammers harnessing the power of artificial intelligence (AI) to create more convincing, targeted, and dangerous scams than ever before.
If you thought you were safe because you could spot a dodgy email from a mile away, think again—the game has changed, and the stakes are higher.
According to the latest threat report from Gen, the company behind Norton, cybercriminals are no longer relying on the old scattergun approach. Instead, they’re using AI to craft highly personalised attacks that are much harder to spot.
The numbers are sobering: in the first quarter of 2025 alone, there was a 186 per cent surge in breached personal information, a staggering 466 per cent spike in phishing reports, and a 17-fold increase in fake browser update scams.
The new face of scams: AI at the helm
So, what does this new breed of scam look like? Let’s break it down:
1. Data breaches: Your information is up for grabs
Data breaches are on the rise, with a 36 per cent increase in company breaches and a 186 per cent jump in individual breaches compared to the previous quarter.
This means more of our sensitive information—passwords, emails, credit card details—is floating around on the dark web, ready to be exploited.
One particularly nasty piece of malware, Lumma Stealer, is designed to sniff out browser passwords, cookies, cryptocurrency wallets, and even data from your email client. Once this information is in the wrong hands, it can be used to create highly convincing scams tailored just for you.
2. Phishing scams: Not just your average dodgy email
Phishing scams have exploded, now making up almost a third of all scam submissions to Norton’s Genie Scam detector.
These aren’t the poorly written, obviously fake emails of yesteryear. Today’s phishing campaigns can mimic legitimate login portals, complete with trusted domains and branding.
Recent scams have targeted customers of major brands like Telstra, AT&T, and Xfinity. Victims receive emails warning of account issues or urging them to review sensitive documents, creating a sense of urgency and panic.
The goal? To trick you into handing over your login details or other personal information.
3. ‘Scam Yourself’ attacks: When you’re tricked into doing the dirty work
Over four million users were protected by Gen from so-called ‘Scam Yourself’ attacks.
These scams use AI-generated personas, deepfake influencers, and even hired actors to manipulate people into infecting their own devices.
A common tactic involves compromised YouTube accounts that prompt viewers to complete a fake CAPTCHA to ‘prove you’re human’.
Instead, you’re granting device permissions or downloading malware. It’s a clever twist on the old ‘click here’ trick, and it’s catching out even the tech-savvy.
4. Mobile financial threats: Your smartphone is the new battleground
Our phones are now prime targets for cybercriminals. Banking trojans can overlay fake login pages on your device, stealing your credentials for online banking, crypto wallets, and credit cards.
Digital currencies are especially attractive to scammers, with one recent campaign using deepfake videos of public figures to steal nearly $4 million across more than 2,000 transactions.
5. Social media scams: Not just cat videos and holiday snaps
Social media is a goldmine for scammers. In the first quarter of 2025, 63 per cent of all social media-related threats were carried out on Facebook, followed by YouTube (22 per cent), X (formerly Twitter, 7 per cent), Instagram (3 per cent), and Reddit.
These platforms allow scammers to target users with compelling messages, fake competitions, and fraudulent investment opportunities.
Why are these scams so effective?
AI is the secret weapon. It allows scammers to:
- Personalise messages using breached data, making them more believable.
- Create realistic fake websites and login pages.
- Generate deepfake videos and voices to impersonate real people.
- Automate attacks on a massive scale, reaching more potential victims.
As Siggi Stefnisson, Cyber Safety CTO at Gen, puts it: ‘Attackers are moving away from broad, indiscriminate campaigns to highly personalised, AI-enhanced deception.’
‘Breached data and AI tools are giving cybercriminals just enough personal information and design sophistication to more easily manipulate people.’
How can you protect yourself?
The good news is, you don’t have to be a tech expert to stay safe. Here are some practical tips:
Be sceptical of unexpected emails or messages, especially those asking for personal information or urging immediate action.
Check the sender’s address and website URLs carefully. Look for subtle misspellings or odd domains.
Never click on suspicious links or download attachments from unknown sources.
Use strong, unique passwords for each account, and consider a password manager.
Enable two-factor authentication wherever possible.
Keep your devices and software up to date to protect against known vulnerabilities.
Be wary of ‘browser update’ pop-ups—always update your browser through official channels, not random prompts.
Don’t trust everything you see on social media—even if it appears to come from a friend or a well-known figure.
What to do if you think you’ve been scammed
If you suspect you’ve fallen victim to a scam:
- Change your passwords immediately, especially for any accounts that may have been compromised.
- Contact your bank or financial institution if you’ve shared financial details.
- Report the scam to the Australian Cyber Security Centre (ACSC).
- Run a full security scan on your devices using reputable antivirus software.
Have you been targeted?
Have you or someone you know been targeted by one of these new AI-powered scams? What tipped you off, or did you get caught out? Sharing your experience could help others avoid falling into the same trap. Let us know in the comments below—your story might just save someone else from becoming a victim.
Stay safe, stay sceptical, and remember: in the digital world, a healthy dose of caution is your best defence.
Also read: This dangerous new fake Facebook AI video ad could trick millions! Are you at risk?
