Can you spot the scam?

Phishing and Business Email Compromise (BEC) are how most attacks on small and medium businesses start — a convincing email, a fake invoice, an urgent request from the “boss”. Run this free 8-scenario quiz to test your instincts: read each message, decide legit or scam, and see the red flags explained after every answer. Everything runs in your browser; nothing is sent until you choose to.


For each message, decide: is it legit, or a scam? You’ll get instant feedback explaining the tell-tale signs, then a score and rating at the end. Go with your gut — that’s the muscle you’re training.

  1. Legit or scam?
    Email

    From Microsoft 365 Security <no-reply@micros0ft-secure.com>

    Subject [Action required] Unusual sign-in — verify within 2 hours

    We detected an unusual sign-in to your account. Your access will be suspended in 2 hours unless you re-verify your password now. Confirm your identity to keep your mailbox active.

    Button links to: micros0ft-secure.com/verify-login

  2. Legit or scam?
    Email

    From Sarah Chen (CEO) <sarah.chen.ceo@gmail.com>

    Subject Quick favour — are you at your desk?

    I’m stuck in back-to-back meetings and can’t call. I need you to grab five $100 Apple gift cards for a client thank-you. Buy them now and send me the codes — I’ll reimburse you. Please keep this between us until it’s done.

  3. Legit or scam?
    Email

    From Accounts — Bright Timber Co <accounts@brighttimber-co.com>

    Subject Updated remittance details for invoice #4471

    Please note our bank has recently changed. Kindly update your records and pay the outstanding invoice #4471 to our new account: BSB 062-000, Acc 1234 5678. Apologies for the short notice — payment is due today.

    Your supplier’s real domain is brighttimber.com.au

  4. Legit or scam?
    MFA prompt

    From Microsoft Authenticator

    Subject Approve sign-in?

    Someone is trying to sign in to your Microsoft account. Approve or deny this request. You have received 6 of these prompts in the last 10 minutes, even though you aren’t signing in.

  5. Legit or scam?
    Email

    From IT Helpdesk <helpdesk@peritusdigital.com.au>

    Subject Scheduled maintenance this Saturday, 8–10pm

    Our email servers will be briefly unavailable during planned maintenance this Saturday between 8pm and 10pm. No action is needed on your part. If you have any questions, reply to this email or call the helpdesk on our usual number.

  6. Legit or scam?
    SMS

    From Unknown (+61 4XX XXX XXX)

    AusPost: Your parcel is on hold due to an unpaid $1.85 delivery fee. Reschedule and pay within 24 hours to avoid it being returned: auspost-redelivery.info/track

  7. Legit or scam?
    Email

    From David Okoro <d.okoro@peritusdigital.co>

    Subject Confidential — urgent payment before 4pm

    I’m finalising a confidential acquisition and need a supplier deposit paid before 4pm today. It’s time-sensitive, so please don’t discuss it with the team. Reply and I’ll send you the account details. Can you action this within the hour?

    Your company’s real domain is peritusdigital.com.au

  8. Legit or scam?
    Email

    From Xero Billing <billing@post.xero.com>

    Subject Your monthly subscription invoice is ready

    Your subscription invoice for June is now available in your account. Nothing has changed since last month, and no payment action is needed if your card is up to date. Log in the usual way at xero.com to view or download it.

0 of 8 answered