Most online scams don't rely on super-clever tech. They rely on speed, distraction, and trust. The moment you act quickly - without a short, repeatable check - you become the path of least resistance for fraudsters.

You don't need ten new tools or a cybersecurity degree. You need one habit that's tiny, teachable, repeatable, and highly effective.

The Rule (in one line)

Pause → Scan → Decide

Pause when something asks you to act; scan the situation with a short checklist or quick tool; decide and act deliberately - save, block, report, or proceed with mitigation. This habit alone prevents most phishing, bogus payments, sketchy apps, and many social scams.

What Each Step Means

1 - Pause (2–5 seconds)

Stop the reflex to click, reply, or approve. Pausing breaks the scammer's timing and gives you a moment to apply the rest of the rule.

How to practice: Say a phrase out loud or in your head: "Pause, check, proceed." Teach kids and grandparents the same phrase - a shared phrase creates a safety culture and reduces shame when asking for help. For teens who may push back on parent-set phrases, our Teaching Teens About Privacy guide turns the pause habit into a negotiated rule they'll actually follow. For a full 7-step plan to help grandparents stay safe - including 3 simple scam-avoidance lines built on this same pause habit - see our Helping Grandma Stay Safe guide.

2 - Scan (10–30 seconds)

Run a tiny checklist or a quick tool to reduce risk.

10–30 second scan checklist:

  1. Who sent this? (is the sender known or plausible?)
  2. Where does the link go? (hover or expand short links)
  3. Does it ask for money or credentials now? (urgency = red flag)
  4. Is the domain/merchant reputable? (quick search or run Site Scanner)
  5. Can I do this later? (if yes, defer)

Tools that speed the scan:

  • Site Scanner - quick summary of site safety signals before entering payment details. For the full 10-second scan habit, see our Scan Before You Click guide.
  • Ask Ivy / "Is It Safe?" - paste a link or description and get a plain-English analysis and recommended next step.

3 - Decide (10–60 seconds)

Act deliberately. The decision is one of four outcomes:

  • Proceed safely - if green, use mitigations: virtual card, masked email, or one-time payment. For the full identity toolkit, see our Digital Identity Hygiene guide.
  • Delay - bookmark or set a reminder to check reviews and confirm later.
  • Ask - forward to a trusted person or use Ivy to summarize the risk.
  • Stop & report - mark as scam and report to platform/bank.

Decision templates:

  • "Proceed but use a virtual card and masked email."
  • "Delay - check reviews and ask a colleague."
  • "Stop - report and block."

Why This One Rule Works (behavioral science)

  • Tiny habitactions are micro (seconds) and easily repeated - no willpower required once embedded.
  • Interrupts heuristicsscams exploit speed and automaticity - a pause reintroduces deliberation.
  • Socially scalableteach the same phrase to family, kids, colleagues - shared norms beat individual fear.
  • Automatablethe Scan step can be delegated to a tool (Ivy Site Scanner / Ask Ivy). The habit stays human-led but tool-assisted.

How to Build It (the 4-week habit plan)

Week 1 - Awareness

Decide on your phrase, put sticky notes on devices, practice 3 times a day when checking email or social feeds.

Week 2 - Automation

Add a browser bookmark to Ivy's quick scan. For payments, add a shortcut for "create virtual card."

Week 3 - Socialize

Teach one family member the phrase. Use it with kids and elders in a role-play so it becomes a shared norm.

Week 4 - Reinforce

Audit the last week - how many times did the habit stop you? Commit to the monthly 10-minute check (Risk Checkup + alias/card audit).

For a full science-backed habit system - micro-habits, weekly routines, stacking, and accountability - see our Security Habits & Routines guide.

Examples of the Habit in Action

Scenario A - a message from "your bank"

Pause → Scan (hover link, check bank app separately, run Site Scanner) → Decide (stop and call bank from published number).

Scenario B - a friend's DM with a short link

Pause → Scan (expand link, check domain, ask friend "did you send that?") → Decide (if link authentic, proceed; otherwise stop).

Pause → Scan → Decide - Pocket Checklist

  • Pause → Say the phrase: "Pause, check, proceed."
  • Scan → Sender known? Link domain legit? Asks for money/credentials? Can I do this later?
  • Decide → Proceed with mitigation (virtual card / masked email) · Delay · Ask · Report.

A single tiny habit - Pause → Scan → Decide - prevents the majority of everyday scams. Practice it for a month, teach one person, and your digital safety will change more than any checklist alone.

Download the pocket checklist

Get the Pause → Scan → Decide card plus Ivy's Site Scanner, Ask Ivy, Virtual Cards, and Masked Emails - the tools that make the Scan step automatic.