A gallery of real-world scams — defanged and safe to study. Test your eye with "Legit or Scam?", learn the tells, and see this week's hall of shame: the breaches, ransomware hits, and truly awful passwords making headlines.
Read each email, cast your vote, then see the verdict, the tells, and how everyone else voted.
Every scam in the museum falls into one of these families. Learn the pattern once and you'll spot the next one.
Fake login pages and "verify your account" traps designed to steal your password. The bread and butter of cybercrime.
Bills for things you never bought, with malware attachments or "pay now" links. Aimed straight at your accounts payable.
The "boss" urgently needs gift cards or a wire transfer. One of the costliest scams for small businesses.
"Send Bitcoin, get double back." Fake giveaways and investment cons that vanish with your money — irreversibly.
Threats demanding payment, often waving an old leaked password as "proof." Almost always an empty bluff.
"You've won!" — for a contest you never entered. Pay a small "fee" to claim a prize that doesn't exist.
A rotating look at the cybersecurity failures making news — so you can learn from others' bad weeks.
Misconfigured cloud buckets and open databases leaking customer records — usually one wrong setting away from a breach.
SMBs hit by encryption attacks, often through a single phished employee or an unpatched VPN.
When an IT provider cuts corners — no backups, shared admin passwords, no monitoring — their clients pay the price.
The passwords still topping breach lists — cracked in well under a second.
All specimens here are sanitized and fabricated for training — no real victim data, no working links. Jordan refreshes the wall as new patterns appear.
BVTech sets up the backups, MFA, and training that keep Texas businesses out of the headlines.
Lock It Down — Free 15-min →