Module 2 of 5
Password security. Recognizing scams and phishing. Protecting personal data. Social media safety.
In eight minutes, you'll learn the exact tricks scammers use to empty mobile money accounts and the simple framework that stops them cold.
The Three-Minute Trap
1 / 4 · 2 minPeter, a 38-year-old hardware dealer in Mombasa
One Tuesday morning, Peter got an SMS: 'MPESA: Ksh 12,500 has been sent to your account. To confirm, send your PIN to 0712-XXX-XXX.'
He had been waiting for a payment from a supplier, so he was relieved. He sent the PIN. Two hours later, his M-Pesa account was empty — Ksh 34,000 gone.
The SMS was fake. There was no payment. The number belonged to a fraudster who had spent three minutes crafting a message Peter had no framework to question.
Peter is not careless or unintelligent. He was simply operating in a digital environment without the specific knowledge that would have protected him. This lesson gives you that knowledge.
Educational only
This lesson teaches general digital safety. It is not professional security or financial advice. For a real fraud emergency, contact your mobile network or bank's official fraud line directly.
The one rule to remember
M-Pesa will never ask for your PIN via SMS. Never. Under any circumstances. Anyone who asks for your PIN — by SMS, by call, or in person — is trying to defraud you.
Grace receives a WhatsApp message from an unknown number saying she has won a prize and must click a link and enter her bank details to claim it. This is most likely: