Get the Playbook
Scam Defence · For small businesses in AU, NZ, the US, and UK

Spot the scam before it costs you the business.

Small business owners are the soft target. You handle real money, you trust people in your inbox, and you are too busy to second-guess every email. The Scam Defence Playbook walks you through the nine scams that hit small businesses hardest right now, the exact red flags for each, what to say or do in the first ten minutes, and a 24-hour recovery plan if you have already been hit. Plain language, no jargon, AI refreshed.

  • Nine common scams that target small businesses, named and explained
  • The exact red flags to spot in the first 30 seconds of an email or call
  • Word-for-word response scripts for staff and suppliers
  • A 24-hour recovery plan if money has already left the business
  • Country-specific reporting routes for AU, NZ, US, UK
Get the Playbook
One-off $99, no subscriptions
AI-refreshed on demand. The playbook never goes stale.
★★★★★
Built on real cases reported to CERT NZ, ACCC Scamwatch, and the FBI IC3 in 2025 to 2026.
plainblackcreative.com/your-playbook
01 Email Impersonation Scams
02 Fake Invoice Scams
03 Phishing & Account Takeover
04 Tech Support Scams
05 Tax & Government Impersonation
10
Sections from email scams
through to recovery plan
2-3
Hours to read the playbook,
fast lookup forever after
9
Specific scams, named,
with red flags and scripts
$99
One-off. Yours forever.
No subscription.
Why small businesses get hit

Scammers are targeting small businesses on purpose. You are the easy mark.

Banks have fraud teams. Big corporates have IT security. Government agencies have cyber units. You have a Gmail account, an accountant who does the books once a month, and a partner who handles the invoices when you are on a job. Scammers know this. They go where the defences are softest.

Most small business scams do not look like scams. They look like a supplier sending a new bank account, a courier asking you to confirm an address, a Microsoft alert about a suspicious sign-in, a tax agency asking you to verify before deadline. The harm is done before you realise something is wrong.

The Scam Defence Playbook is the playbook the bank does not give you. Nine specific scams with specific red flags, specific response scripts, and specific recovery steps. By the time you finish, you will be able to spot every one of these in the first 30 seconds.

📧

"Our bank account has changed"

An email from a real supplier with a real subject line and a new bank account in the footer. The supplier name is right. The amount is right. The bank account is the scammer's. You pay it. The real supplier asks where their money is two weeks later.

📞

"We are calling from the IRD"

Caller knows your business name, your trading style, and that you owe tax. They tell you a warrant is being prepared. They want you to verify your bank details, or pay a "deferral fee" with iTunes vouchers. Classic government impersonation. Real agencies never call like this.

🧾

Fake invoices that almost match yours

An invoice arrives that looks like one of your normal supplier invoices. Right format, right line items, slightly different account number. Your bookkeeper pays it on autopilot. Nobody notices for six weeks.

💰

"Pay this fee to release your funds"

You lost money in a previous scam. A new contact reaches out claiming they can recover it. They just need a "tax fee" or "verification deposit" first. You pay. They disappear. This is recovery scam, the second-stage hit on already-hurt victims.

💼

"Receive packages and forward payments"

Unsolicited job offer, work from home, decent pay. The job is to receive parcels at your address or accept transfers and forward them on, minus a fee. You are being recruited as a money mule. Your bank account becomes the laundering layer.

🚨

Already hit, no plan in place

The first hour after you realise is the hour that decides whether the money comes back. Most small businesses do the wrong things in panic. The 24-hour recovery plan in this playbook is the difference between recovering 80% and recovering 0%.

The fix
Nine scams named, mapped, and broken down. Red flags, response scripts, recovery plan. Country-specific reporting. AI refreshed when new scam variants appear. All yours for $99.
Get the Playbook
Inside the playbook

Ten sections. One complete defence.

Every section is personalised to your business, your country, and your industry. Every red flag is named in plain language. Every response script is copy-paste ready. Every section has an AI update button so the playbook tracks new scam variants as they emerge.

01

Email Impersonation & BEC Free preview

Business email compromise, supplier fraud, payroll redirect. The most expensive small-business scam by a wide margin. Six red flags, the dual-channel verification rule, and the script your bookkeeper says when an invoice arrives.

Plain checks Phone callback Claude
02

Fake Invoice Scams Free preview

The invoice that looks like one of yours but is not. The eight tells. The 30-second checklist your bookkeeper runs before paying anything over $500. What to do if a fake invoice already cleared.

Checklist Accounting Claude
03

Phishing & Account Takeover

The "your account has been suspended" email. The fake login page. The MFA prompt you did not request. How phishing connects to ATO, payroll fraud, and customer data leaks. Lock-down playbook for staff accounts.

Claude 2FA
04

Tech Support & Remote Access Scams

"This is Microsoft. Your computer is sending out viruses." The fake support call, the screen-share trap, the bank-account drain that follows. What real platforms never do, plus the script that ends the call in 5 seconds.

Phone Browser Claude
05

Tax & Government Impersonation

IRD, ATO, HMRC, IRS. The voicemail with the warrant threat. The "verify your details" SMS with a link. How real tax agencies actually contact you, and the country-specific reporting routes when they do not.

SMS Phone Claude
06

Investment Scams & Pig Butchering

The dating app to crypto investment pipeline. The "guaranteed 5% per day" fund. The "exclusive opportunity" introduced by a stranger. Why these target small business owners specifically. The five-test sniff check.

Claude Plain test
07

Recovery Scams (the second hit)

Already lost money? You will be approached again, often within weeks. "Pay this fee and we will recover your funds." This is the second-stage scam that targets confirmed victims. How to spot it and where to actually report.

Reporting Claude
08

Job Task Scams (Money Mule Recruitment)

Unsolicited job offers. Receive packages, forward payments, buy crypto on commission. Your bank account becomes the laundering layer. Why these are growing fast in 2026 and how to recognise them in the first email.

Email Claude
09

Marketplace & Customer Fraud

Fake buyer asks to ship before payment clears. Friendly fraud chargebacks weeks after the work was delivered. The fake stripe receipt screenshot. How to verify a payment before it really lands.

Payment apps Claude
10

The 24-Hour Recovery Plan

The first hour, the first six hours, the first 24 hours after you realise you have been hit. Bank, police, reporting bodies, internal comms, customer comms. The exact order, the exact wording, country by country.

Phone Email Claude
The AI refresh button

Scam variants change weekly. So does this playbook.

Every section has a Check for Updates button. Press it and Claude scans the web for the latest variants of that scam, the newest red flags, and the most current reporting routes. New scams appear every month; this playbook tracks them. No subscription. No upgrade. Built in.

  • Connected to Claude with web search, every answer is grounded in real 2026 reports from CERT NZ, ACCC, FBI IC3, and Action Fraud.
  • Specific to your country, country-relevant reporting routes and scam variants only.
  • No subscription fee, the AI refresh is included in your $99 forever.
  • "NO_UPDATE" response when nothing has changed, so you do not chase ghosts.
  • Refreshed content cached, so you can come back to the latest version any time.
Section 03 · Phishing & Account Takeover · Check for Updates
> Press Check for Updates
"Updating Phishing & Account Takeover for a small construction business in Hamilton, NZ. Looking for any new phishing variants reported by CERT NZ since 2025, plus current MFA bypass techniques."
✦ Claude responds
Two recent variants worth being aware of:

1. MFA fatigue attacks. Attacker triggers repeated MFA prompts at 3am hoping you tap Approve to make them stop. CERT NZ flagged this in late 2025. Rule: never approve an MFA prompt you did not initiate. Phone the bank or platform directly if it persists.

2. AI-cloned voice phishing. Calls using a 30-second cloned voice sample from social media to impersonate a director or partner. Most often used to authorise wire transfers. Establish a verbal challenge phrase with your bookkeeper that is not on any social platform.

Everything else in Section 03 is still accurate. The dual-channel verification rule remains the single most effective defence.
How it works

Three steps. Under 10 minutes.

01

Tell us about your business

Business name, country, industry, and a couple of context fields. No payment yet. Takes 90 seconds.

02

We build your personalised playbook

Delivered overnight via private link. Sections 1 and 2 (the two most expensive scams for small businesses) are fully unlocked so you can see exactly what you are getting before you pay a cent.

03

Unlock the full playbook for $99

Pay once inside the playbook. Sections 3 to 10 unlock instantly. No subscription, no upsells, no follow-up sales calls. Yours forever.

Pricing

Cyber-consultant work. DIY price.

  • Personalised to your business. Your country, industry, payment platforms, and team size baked into every section.
  • Ten sections, end-to-end. Email impersonation, fake invoices, phishing, tech support, tax impersonation, investment scams, recovery scams, job task scams, marketplace fraud, plus the 24-hour recovery plan.
  • AI refresh button forever. One click updates any section with the latest scam variants and reporting routes.
  • Country-specific reporting. Real, current routes for AU (Scamwatch), NZ (CERT NZ + Netsafe), US (FBI IC3 + FTC), UK (Action Fraud).
  • Copy-paste ready scripts. The exact words to say to staff, suppliers, and your bank in the first ten minutes.
  • The 24-hour recovery plan. Hour 1, hour 6, hour 24, day-end. The exact order of calls, emails, and reports if money has already left.
  • Works on any device. Private URL, no logins, no passwords, no app to install.
  • Lifetime access. No subscription. No renewal. No "Pro tier." This is the product.
One-off · Lifetime
Cyber security consultant: $2,500 to $5,000 per audit
$99once

One-off. Yours forever. No subscription.

Get the Playbook
Delivered overnight. Preview before you pay.
Questions people ask

Everything you're wondering.

A course teaches. A PDF describes. The Scam Defence Playbook is a system you follow, with red-flag checklists, response scripts, and a step-by-step recovery plan built around your business and country. It is personalised to you at delivery, refreshes itself when new scam variants appear, and produces specific outputs: the exact words you say to staff, suppliers, and your bank when something looks wrong.
The Scam Defence Playbook is the least technical playbook in the PlainBlack range. There is nothing to install, no software to configure, no IT changes. It is plain-language red flags, plain-language scripts, and a recovery checklist. If you can read an email and pick up a phone, you can use it.
There is no setup. Read the playbook end-to-end in two to three hours. After that it is fast lookup: when something suspicious arrives in your inbox, search the section, check the red flags, follow the script. Most owners read it once on a Sunday afternoon and keep the link in their bookmarks.
One-time. $99, yours forever. No subscription, no upgrade tier, no upsell. New scam variants appear every month; refresh any section with the AI button to pull the latest red flags and reporting routes. The recovery plan never expires.
Your playbook is hosted at a private, unguessable URL that is never listed, indexed, or shared with anyone other than you. No accounts, no logins, no passwords. Just a link only you have.
You see Sections 1 and 2 free. By the time you pay, you know what you're getting. All sales are final. Access or delivery issues? Email us and we'll sort it out.
Every section has a Check for Updates button. Press it and Claude searches the web for the latest variants of that scam, the newest red flags, and the most current reporting routes for your country. If nothing meaningful has changed in 90 days, you get a "no update needed" response. Built in, no extra cost.
Reply to your delivery email. We read every message. We will either point you to the right section, clarify a step, or if you have actually been hit and need someone to walk you through the recovery plan in real time, we can quote you for emergency support.
PlainBlack is a small studio building personalised playbooks that replace agency retainers for small business owners. Every playbook reflects work we have done as paid client engagements. Scam Defence is the playbook we built after watching too many small business owners get hit and not know what to do. We turned it into a $99 system because the cost of one successful scam can be 50 times that.

Get the Playbook.

90 seconds. No payment. We build your playbook overnight and email you a private link. Pay the $99 only if you love what you see.

We'll email your private playbook link within 24 hours. No calls, no spam.

Nice. You're in.

We'll build your playbook overnight and email your private link within 24 hours. Check your inbox (and spam folder) tomorrow.

Stop hoping. Start defending.

Nine common scams, exact red flags, the response script, the 24-hour recovery plan. $99 once.

Get the Playbook

A "supplier" emailed us with new bank details on a Friday afternoon. The playbook's red flag list caught it. We'd nearly paid $14,000. Best $99 I've spent on the business.

Michelle P. Small business owner, New Zealand
Get the Playbook