Her name is Carol. She's 62, retired, lives outside of Savannah. She's careful with money and careful with her computer. She doesn't click on things she doesn't recognize.
But last Tuesday morning, Carol opened her email and saw a message from Bank of America.
It had the logo. It had her name. It said there had been "unusual activity" on her account and that she needed to verify her identity within 24 hours or her account would be temporarily frozen.
"Dear Carol, We've detected unusual activity on your account ending in 4817. To protect your funds, please verify your identity immediately. Failure to respond within 24 hours will result in a temporary hold on your account. Click here to verify now."
Carol's stomach dropped. She'd just paid her property taxes with that account. She moved her mouse toward the blue "Verify Now" button.
And then she stopped.
"Something about it just felt off. But I couldn't put my finger on what."
Here's what Carol did next. Instead of clicking the link, she opened a free guide she'd downloaded the week before. A short, plain-English PDF about spotting scam emails. She'd read it over coffee one morning. Took about ten minutes.
The guide had told her to look for one thing. Just one. And the moment she checked for it, the whole email fell apart.
The sender's email address wasn't bankofamerica.com. It was bnk-ofamerica-secure.com.
That was it. One small thing that told her everything. Carol closed the email, reported it as spam, and went on with her day. Her $4,200 stayed right where it belonged.
The guide that saved Carol took ten minutes to read. She downloaded it for free the week before — just in case. That "just in case" turned out to be worth $4,200.
I wish Carol's story was unusual. It isn't.
Every day, thousands of people just like her — smart, careful, experienced people — get emails that look exactly like they came from their bank, their doctor's office, Medicare, Amazon, or even their grandchildren. These aren't the obvious scams from ten years ago with broken English and Nigerian princes. These are professional, polished, and terrifyingly convincing.
The FBI's Internet Crime Complaint Center reported that Americans over 60 lost $3.4 billion to online scams in 2023 alone. That number went up 11% from the year before. It's still climbing.
But here's the thing that keeps me up at night: almost every one of those losses could have been prevented by knowing just a few simple things to look for.
Not tech skills. Not software. Just knowing what to check before you click.
Carol didn't become a computer expert. She just read a short guide that told her exactly what to look for.
That guide taught her five things:
How to check the real sender behind any email — even when the name looks right. How to spot the specific words and phrases that scammers use over and over (words like "verify immediately," "your account will be suspended," and "click here within 24 hours"). How to tell the difference between a real security alert and a fake one. What to do if you've already clicked on something suspicious. And one simple question you can ask yourself that reveals whether any message — email, text, phone call — is real or a trap.
It takes about ten minutes to read. It's written in plain language, not tech jargon. And after you've read it, you won't look at your inbox the same way again.
I made this guide free because I don't think safety should cost money.
You don't need to buy anything. You don't need to sign up for a course. You don't even need to be good with computers. You just need ten minutes and an email address so I can send it to you.
