With all the advantages AI (artificial intelligence) brings Canadians – enhanced productivity, solving complex problems and automating mundane tasks – the flip side is that AI also helps fraudsters better target, and trick, their victims.

Cybercriminals can now write more professional-looking messages (with fewer spelling and grammatical mistakes) as well as create “deepfake” attacks that digitally impersonates a familiar voice or face.

Thankfully, Canadians who are 55-plus are becoming more adept at detecting AI-driven scams. This is according to the results of a new survey from Ipsos and HomeEquity Bank, which focuses exclusively on Canadians aged 55 and older. The study found that nearly 7 in 10 (68 per cent) of older Canadians are aware of the misuse of AI by scammers, debunking the myth this generation lacks digital awareness.

“AI is making tactics more personal and sophisticated,” concedes Yvonne Ziomecki-Fisher, Chief Customer, Brand & Advice Officer, at HomeEquity Bank. “But because this demographic is historically targeted more frequently than younger generations, it has sparked a shift.” 

Older Canadians are now “showcasing their resilience and adaptability in the face of these challenges,” Ziomecki-Fisher adds.

The good news is, you don’t need to be tech savvy to safeguard your data and devices.

So what better time than in March – “Fraud Prevention Month” – to go over the basics? The following is a look at how to up your digital security game in only a few minutes. 

Be Aware of Potential Scams / Scammers

The first tip is to be vigilant against the fraudsters. Exercise common sense when reading emails and text messages. No respectful company will ever ask you to urgently confirm your identity by filling out forms. Never click on suspicious attachments or links.

Don’t trust anyone calling you that claims to be from CRA, a bank, Microsoft, your ISP, and so on. 

If you’re really unsure, contact the company – like your bank – to ask if it really was them. Chances are, it wasn’t. And if you contact them, use a phone number you already have for the organization – or look it up on your own – rather than using any number, link or contact info provided in a suspicious message or call.

There are also social media scams, such as a legitimate-looking DM from a “friend” over Facebook Messenger that says they’re stuck in some city and need money right away. Sigh. Your real friend’s account was most likely compromised and cloned. Again, if you want to be sure, reach out to them using a different contact method (an existing phone number or email you already have for them, for example) to confirm the authenticity of the message. 

Look for AI “Tells”

While AI-powered deepfakes are getting better all the time, always double-check the source to safeguard against scammers.

The technology is not quite perfect yet so, if you get a phone call, listen for oddly worded (and often formal) language. If they are claiming to be someone you know, ask them a question to which only that person would know the answer. If something sounds off, trust your gut, hang up, and contact the person you know in another manner.

If it’s a video, look for unnatural movements, excessive blinking, mismatched lighting or shadows and inconsistencies in lip-syncing.   

Use Strong and Unique Passwords / Passphrases

For all the tech you use, remember to have a strong password for all your accounts, which is at least seven characters long and a combination of letters, numbers and symbols (bonus points for adding upper and lowercase characters). 

Never use the same password for all your online activity, because if a site or app is breached, then the crooks have access to all your accounts. Password manager apps, like Dashlane and LastPass, are a good idea.

For online banking and shopping apps, opt for “multi-factor authentication” (“MFA”), which not only requires your password to log in, but also a one-time code sent to your mobile device, to prove it’s really you. MFA combines something you know (password) with something you have (your phone).

If you can add a “biometrics” layer, too, like your face or thumbprint, that’s another good way to prove it’s you.

Have Good Anti-Malware, (and Keep It Updated)

Just as you wouldn’t leave the front door to your home unlocked, you shouldn’t let your tech be vulnerable to attacks. That includes a virus (or other malware) that sneaks onto your device or is the result of “social engineering” (including ransomware and phishing scams) because you were deceived into divulging confidential information.

Reputable anti-malware on all your devices – laptops, desktops, tablets, and smartphones – can identify, quarantine, delete, and report any suspicious activity. The most robust software offers a suite of services, including a firewall and encryption options.

Also be sure to set up automatic updates on all your tech, including your operating system, browser, plug-ins, and other software. You only need to do this once.

Use the “private” or “incognito” mode of your browser, which deletes your history and cookies after your session. Better yet, consider a Virtual Private Network (VPN) app to remain anonymous when online. 

Protect Your Smartphone and Tablet, Too

Cybercriminals aren’t just targeting you through your computer anymore. A few ways to protect your information on a smartphone or tablet:

• Make sure you lock your device, in case it’s stolen or lost, by adding a PIN, password or biometrics option (per above).
• Only download apps from reputable companies. When using apps, read the terms and conditions before granting permission to everything (for example, why does a puzzle game want access to your contacts or camera?).
• Set up the “Find my phone” feature, which lets you remotely wipe your phone’s data clean if lost or stolen, and see where you left it on a map (when logged into another device with the same login credentials). If it’s stolen, never try to retrieve it on your own – instead, contact the authorities.