In times of uncertainty, businesses and individuals alike seek stability. Unfortunately, cyber criminals see those same moments as opportunities to strike. From global pandemics to shifting economic conditions, cyber crime often increases when people are distracted, anxious, or overwhelmed by change. Understanding how these threats emerge and how to protect against them is critical for Australian businesses—particularly small and medium-sized enterprises (SMEs).
Change is a Catalyst for Cyber Attacks
Cyber criminals thrive in chaos. Whenever there’s widespread confusion or rapid shifts in behaviour, such as during the COVID-19 pandemic, international conflicts, economic turbulence, or even local elections, attackers ramp up their efforts. These situations give them two critical advantages: first, they can craft messages that seem relevant or urgent, and second, their targets are less likely to scrutinise those messages carefully.
One of the clearest examples of this was seen during COVID-19. As businesses rushed to remote work and individuals were eager for information, phishing emails disguised as government health updates, vaccine appointment confirmations, or remote access software flooded inboxes. Many people, unprepared and anxious, clicked without thinking.
More recently, global economic tensions and changes to international tariffs have led to confusion among importers, exporters, and logistics providers. Cyber criminals have taken notice. Fake emails claiming updated customs fees, revised shipping instructions, or urgent payments for international goods are becoming increasingly common.
Common Scams That Exploit Uncertainty
The methods cyber criminals use may vary, but they often rely on the same playbook when exploiting uncertainty:
Phishing Emails
These emails are crafted to look like they’re from a trusted source—government departments, freight companies, banks, or even your own business partners. They often use urgent language to create pressure, such as:
“Your shipment is on hold due to new tariff regulations. Click here to release.”
“You’ve been selected for a government rebate. Enter your details to claim.”
“Your tax file number has been flagged. Immediate action required.”
Business Email Compromise (BEC)
In BEC attacks, hackers infiltrate or spoof legitimate business email addresses to send fake invoices or request urgent fund transfers. These scams often follow changes within a company or industry, such as:
Leadership transitions: Cyber criminals pose as the new CEO requesting a payment.
Vendor changes: Fake invoices are sent using similar names to a known supplier.
Regulatory changes: Scammers pretend to be from compliance teams asking for document verification.
Invoice Scams
Attackers often watch for opportunities when a business is onboarding new vendors or managing shifting supply chains. They intercept or mimic real invoices and change the payment details. Because the invoice appears routine, it’s processed without question—resulting in thousands of dollars lost. Increasingly, scammers are also sending “urgent payment invoices” to exploit pending changes to tariffs, delivery deadlines, or supplier arrangements. These urgent requests often bypass normal checks in the rush to meet perceived new requirements.
It’s tempting to believe that investing in cyber security tools—like antivirus software or email filters—is enough to keep your business safe. But while those tools are vital, they’re only part of the solution.
Human error remains the leading cause of cyber incidents. A distracted employee clicking a malicious link or forwarding bank details without verification can unintentionally open the door to an attack. That’s why cyber security awareness training is essential.
Training helps staff:
Recognise the signs of a phishing email.
Understand when and how to verify requests.
Know what to do when something feels off.
Build habits around secure email and payment practices.
When employees know what to look for, they become your first line of defence—not your weakest link.
Practical Tips to Stay Cyber Safe During Uncertain Times
Whether your business is navigating economic change, adjusting to new regulations, or simply managing day-to-day operations, there are a few clear strategies to reduce cyber risk:
Implement an Invoice Payment Protocol
Have a documented process for verifying and approving payments. This might include:
Dual approval for transactions over a certain threshold.
Confirming bank details over the phone using known contact numbers.
Avoiding changes to payment details without written confirmation and verification.
Educate and Empower Your Team
Regular cyber awareness training should be part of your workplace culture. Ensure new employees are trained during onboarding and that all staff receive refresher sessions—especially when new scams are circulating.
Be Wary of Urgency and Emotion
Scammers rely on people acting quickly and emotionally. Teach staff to pause, verify, and ask questions before clicking or responding.
Use Secure Communication Channels
Whenever possible, use encrypted or secure platforms for sensitive information. Avoid sending bank details, passwords, or sensitive documents via unsecured email.
Stay Informed
Sign up for updates from trusted cyber security sources. Staying aware of current scams helps you and your team recognise red flags early.
Don’t Wait for an Attack to Take Action
Uncertainty isn’t going away. Whether it’s global politics, local elections, economic policies, or natural disasters, change is part of doing business. What matters is how you prepare your team to respond.
Cyber criminals are counting on you to be too busy, distracted, or unsure to notice their attempts. But with awareness and the right protocols in place, you can turn that uncertainty into a strength—not a vulnerability.
Take the First Step: Free Cyber Security Training
At Jam Cyber, we believe knowledge is power. That’s why we offer free cyber security awareness training via the Jam Cyber Knowledge Hub. Designed for Australian SMEs, our training is simple, practical, and designed to empower every member of your team.
Uncertainty Creates Opportunity:
How Cyber Criminals Exploit Change
In times of uncertainty, businesses and individuals alike seek stability. Unfortunately, cyber criminals see those same moments as opportunities to strike. From global pandemics to shifting economic conditions, cyber crime often increases when people are distracted, anxious, or overwhelmed by change. Understanding how these threats emerge and how to protect against them is critical for Australian businesses—particularly small and medium-sized enterprises (SMEs).
Change is a Catalyst for Cyber Attacks
Cyber criminals thrive in chaos. Whenever there’s widespread confusion or rapid shifts in behaviour, such as during the COVID-19 pandemic, international conflicts, economic turbulence, or even local elections, attackers ramp up their efforts. These situations give them two critical advantages: first, they can craft messages that seem relevant or urgent, and second, their targets are less likely to scrutinise those messages carefully.
One of the clearest examples of this was seen during COVID-19. As businesses rushed to remote work and individuals were eager for information, phishing emails disguised as government health updates, vaccine appointment confirmations, or remote access software flooded inboxes. Many people, unprepared and anxious, clicked without thinking.
More recently, global economic tensions and changes to international tariffs have led to confusion among importers, exporters, and logistics providers. Cyber criminals have taken notice. Fake emails claiming updated customs fees, revised shipping instructions, or urgent payments for international goods are becoming increasingly common.
Common Scams That Exploit Uncertainty
The methods cyber criminals use may vary, but they often rely on the same playbook when exploiting uncertainty:
These emails are crafted to look like they’re from a trusted source—government departments, freight companies, banks, or even your own business partners. They often use urgent language to create pressure, such as:
In BEC attacks, hackers infiltrate or spoof legitimate business email addresses to send fake invoices or request urgent fund transfers. These scams often follow changes within a company or industry, such as:
Attackers often watch for opportunities when a business is onboarding new vendors or managing shifting supply chains. They intercept or mimic real invoices and change the payment details. Because the invoice appears routine, it’s processed without question—resulting in thousands of dollars lost. Increasingly, scammers are also sending “urgent payment invoices” to exploit pending changes to tariffs, delivery deadlines, or supplier arrangements. These urgent requests often bypass normal checks in the rush to meet perceived new requirements.
Why Cyber Security Awareness Training Matters
It’s tempting to believe that investing in cyber security tools—like antivirus software or email filters—is enough to keep your business safe. But while those tools are vital, they’re only part of the solution.
Human error remains the leading cause of cyber incidents. A distracted employee clicking a malicious link or forwarding bank details without verification can unintentionally open the door to an attack. That’s why cyber security awareness training is essential.
Training helps staff:
When employees know what to look for, they become your first line of defence—not your weakest link.
Practical Tips to Stay Cyber Safe During Uncertain Times
Whether your business is navigating economic change, adjusting to new regulations, or simply managing day-to-day operations, there are a few clear strategies to reduce cyber risk:
Have a documented process for verifying and approving payments. This might include:
Regular cyber awareness training should be part of your workplace culture. Ensure new employees are trained during onboarding and that all staff receive refresher sessions—especially when new scams are circulating.
Scammers rely on people acting quickly and emotionally. Teach staff to pause, verify, and ask questions before clicking or responding.
Whenever possible, use encrypted or secure platforms for sensitive information. Avoid sending bank details, passwords, or sensitive documents via unsecured email.
Sign up for updates from trusted cyber security sources. Staying aware of current scams helps you and your team recognise red flags early.
Don’t Wait for an Attack to Take Action
Uncertainty isn’t going away. Whether it’s global politics, local elections, economic policies, or natural disasters, change is part of doing business. What matters is how you prepare your team to respond.
Cyber criminals are counting on you to be too busy, distracted, or unsure to notice their attempts. But with awareness and the right protocols in place, you can turn that uncertainty into a strength—not a vulnerability.
Take the First Step: Free Cyber Security Training
At Jam Cyber, we believe knowledge is power. That’s why we offer free cyber security awareness training via the Jam Cyber Knowledge Hub. Designed for Australian SMEs, our training is simple, practical, and designed to empower every member of your team.
Need more support? Contact our team today.
// Need more help?
Contact our team today.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Recent Posts
Categories