Smishing scenarios: learn more about some of the common pretexts and how to protect yourself!
SMS remains fertile ground for cybercriminals, with there no end to the spread of the so-called "smishing" scam.
Smishing involves sending fake text messages to trick victims into clicking on malicious links, sharing personal information, or installing malware on their devices.
In this article, we'll explore some of the most common smishing scenarios and provide tips on how to protect yourself against these scams.
Fake purchase notifications
It's very common for people to opt to receive notifications for card purchases via SMS. This way, they can always be on the lookout and be notified of any suspicious activity. Scammers use this tendency as an opportunity to send text messages with fake pending purchase notifications using real card details.
Victims don't realize the number is different and panic since they never made any purchases and end up calling the number or clicking on the indicated link to immediately resolve the issue.
Fake bank notifications
Criminals often impersonate financial institutions in smishing scams, sending text messages about apparent problems with your bank account, approving a credit card with a high limit, requesting mandatory registration to avoid having your account blocked, and so on.
Remember that banks don't usually send links by SMS. Instead, they provide general information and encourage customers to visit the bank's official website to resolve any problems.
Password reset message
Another pretext for smishing is linked to a rise in data breaches, resulting in greater concern when it comes to using secure passwords. With this in mind, scammers send messages alleging your account has been compromised and forward an authentication code by SMS to "solve" the problem.
In reality, they request the code to gain access to an account protected by double authentication. So, never share authentication codes received by SMS since they could grant criminals access to your account.
Delivery problems
With the increase in online shopping, it's become quite common for people to track the status of their deliveries. Consequently, scammers take advantage of this pretext to send fraudulent notifications pretending to be carriers. They send messages warning of a problem with the delivery of a product and ask the victim to access a link or call a number to resolve the issue.
Receiving benefits
Scammers also use SMS to send messages informing victims that they have received an exclusive benefit, a bonus, or a prize, perhaps something like an internet bonus or a free top-up. The victim is usually required to click on a link to redeem the benefit, but this action can result in malware being installed on their device.
The best defense against smishing
So, the best way to protect yourself against smishing is to remain cautious and always read messages carefully. Beware of messages with very urgent content, such as fraud warnings and security notifications, or anything of a financial nature, such as approved loans and pending purchases.
If you receive a suspicious text message, avoid clicking on links, and don't call the indicated phone number. If you’re in any way suspicious about the message, check its authenticity with the company or institution in question via official communication channels.
It is essential to remember that legitimate messages from government agencies and financial institutions will arrive through official channels if there really is a problem that requires your attention. Also, bear in mind that messages from short five- or six-digit numbers are not necessarily reliable.
As technology evolves, so do the scammers. Remain vigilant and protect yourself against smishing by staying informed and adopting sound digital security practices.