Jess and Will dreamt of buying a home. Then scammers took $49,000

By
Alex Brooks
August 24, 2024

Jessica Greentree and Will Clinton never once ordered avocado toast, saving almost every cent of their wages to buy their first home near Jess’s beloved horses, Jay and Oakey, in semi-rural Camden in NSW.

They had big dreams: to climb on Australia’s impossibly expensive property ladder by living with parents and foregoing happy nights out, holidays and even haircuts.

Will Clinton and Jessica Greentree saved hard to buy their first home, but then lost money in a scam.
Will Clinton and Jessica Greentree saved hard to buy their first home, but then lost money in a scam. Photo: Edwina Pickles

The day they got the keys to their first home should have been triumphant – instead it became their worst nightmare, learning banks had allowed scammers with fake “mule” bank accounts to steal their settlement funds.

When Greentree, 25, and Clinton, 27, took their case to the Australian Financial Complaints Authority (AFCA), their bank offered a $500 payment for their $48,925 loss. Banks do not reimburse scammed money, claiming financial crime victims “authorised” the transaction.

Scammers perpetrate these crimes, impersonating Property Exchange Australia (aka PEXA, Australia’s clearing house for property settlements), or solicitors and conveyancers to send fraudulent emails or text messages to home buyers two to three days before settlement. They tell buyers to misdirect funds into criminal “mule” accounts, from where the money is quickly sent overseas or into cryptocurrency.

Artificial intelligence has enabled scammers to target more people and exploit more leaked personal information. Conventional signs of scams, such as malicious links and poor wording or grammar, no longer exist.

“Losing that money has been absolutely devastating,” said Clinton, a draftsman, adding the couple can’t afford to move into their home and need to rent it out to recover from the financial loss. They also had to pay a higher mortgage interest rate, due to taking out an investor loan instead of an owner-occupier loan.

“We want to tell this story to stop other people ending up in our situation,” said Greentree, an occupational therapist. “We went without a lot of things to buy the house – we sold firewood for cash, we stopped going out, we would share one cup of coffee sip by sip.”

Iron Bastion founder and cybersecurity expert Gabor Szathmari says the “ruthless professionalisation” of financial crime means different crime gangs specialise in different areas of scamming. One group might focus on breaking into emails to get information about large transactions while another might steal driver licences, passports and other identification to open new bank accounts.

“Unfortunately, crime pays, and technology allows criminals to carry out scams on a large scale over the internet. For instance, phishing emails can be sent in bulk, and robocalls can be made without human interaction,” he said.

In Australia, there is no legal requirement for banks to name-check or confirm the payee for bank transfers despite the Australian Competition and Consumer Commission recommending banks put these checks in place back in 2022 and consumer groups demanding it in 2019.

Szathmari’s colleague, solicitor Nick Kavadias, says it’s easier for scammers to target businesses such as real estate agents and conveyancers – who may not store personal information securely – than to rob a bank.

“I’ve seen [scammers] break into email, and then they suck all the emails out, and they look for keywords, you know ‘contract’ or ‘sale’ or whatever and then they continue to sit and wait until the right time to send [the victim] an email pretending to be the solicitor, going, ‘Hey, these are the payment instructions’ and they’ve copied and pasted previous emails and footers that they’ve received, so it looks legitimate,” he says.

Cybertrace chief executive officer Dan Halpin – formerly with ASIO and NSW Police – says international scamming rings target trusting Australians because we have access to large sums of money and it’s “basically shooting fish in a barrel”.

Home buyers are at risk of scams.
Home buyers are at risk of scams. Photo: Steven Siewert

“I am aware of some situations where victims are suffering massive depression, and I’ve even heard of cases where victims have [died by] suicide because they firstly have lost their money, but also because they get limited assistance and police don’t take them seriously,” he said.

PEXA Group chief information technology security officer David Willett says bank transfer scams increased during COVID-19, dropped last year but are on the rise again.

“With the world grappling with the cost of living, geopolitical disputes and major elections, we are starting to see an uptick,” he says.

Levin Salaberry and his partner Tina Damcesvka lost $91,650 in a home-buying scam in October 2023, when a CommBank branch teller transferred money to another “mule” CommBank account that NSW Police have said was set up with a stolen identity.

When Levin and Tina lost money to scammers, it took a toll.
When Levin and Tina lost money to scammers, it took a toll. Photo: Edwina Pickles

Salaberry’s bank recovered $44,971.22 between October 18, 2023 and June 12 this year, leaving him with a devastating $46,678.78 loss.

CommBank has offered to pay him another $4582.50 “to resolve the matter on a without admissions basis”, which he has not accepted.

Salaberry, 42, has been traumatised by the scam – his heart races every time he hears his mobile phone ping with a notification. “He went into himself, into a shell,” says Damcesvka, 50, an office worker.

Salaberry initially couldn’t bring himself to complain to AFCA, because he had to log in to an online portal to make the complaint, which he didn’t want to do after being the victim of cybercrime. He is now pursuing the matter.

“I don’t own a computer. I don’t sit in an office and do emails. I don’t answer phone calls from people I don’t know,” the construction worker, says, explaining he copies and pastes every number that calls him into WhatsApp so he can see if the person has a legitimate profile and photo.

Technology developed by fraud prevention firm BioCatch helped banks detect more than 150,000 mule accounts last year, though it’s not clear whether banks closed these accounts.

“Not just fraud and scams, but money laundering and all types of financial crime are more complex, more sophisticated, faster and of a higher volume than ever before,” says BioCatch executive Richard Booth. The company’s fraud detection and anti-money laundering technology is used by nine out of 10 major banks.

Most people hold bank accounts that comply with 100 points of identity. Scammers use illegitimate mule accounts to move stolen money overseas or into cryptocurrency, seemingly in violation of the spirit of Australia’s anti-money laundering and counter-terrorism financing laws, which require banks to report suspicious transactions over $10,000.

Banks have announced “scam-safe accords” to ensure names match account numbers in online transfers, investing $100 million in the project. Financial Services Minister Stephen Jones has unveiled new legislation forcing banks to identify dodgy accounts, but none of this has been implemented yet.

In response to questions from this masthead, Jones said the laws will require banks – and the likes of social media companies – to meet strict obligations designed to prevent scammers preying on victims.

“It is government policy that all bank accounts unlawfully established or maintained should be closed,” he said.

Solicitors and conveyancers are obliged to warn home buyers of the risk of payment misdirection, and ideally should complete the transfer of settlement funds in person or over a video call to direct funds to the right account.

Australian Banking Association CEO Anna Bligh said banks are rolling out tools to help stifle scams, including the confirmation system, and banks are closing down mule accounts as well as using more biometric checks to help verify the identity of people opening new accounts.

She called for tech companies to implement safeguards to stop hacks of email accounts. “Where a bank account is hacked, banks are required to reimburse customers and there is a question here about whether tech companies should reimburse customers when email accounts are hacked,” she said.

Lifeline 13 11 14

Share: