Cybercriminals have found a way to strip digital device users of their personal data, using a cyber fraud tool called “smishing.” Smishing scams compromise the target’s cell phone through texts or SMS messages, then steal the victim’s personal data once the user clicks on the text link.
Smishing fraudsters count on a victim clicking on links in SMS texts, which digital consumers often don’t scrutinize as closely as links in emails. Victims often mistakenly assume the content of text messages is private, from a trusted and secure source.
Smishing professionals use text messages that lure you into clicking on links or providing personal information in response to a text message from what appears to be a trusted source, such as a company with which you do business, like your bank. Many businesses today ask for our cell numbers and permission to send us text alerts for future appointments to telling you your table is ready at a restaurant.
In recent smishing scams, fraudsters have used these tactics to steal personal data and cash from unwary victims. Here are a few smishing scams to watch out for::
Bank Scams
In this instance, victims are prompted by a text message appearing to come from their bank to respond to a feigned emergency by providing personal information like an account number. If you provide this or other personal information, it can be used by the scammers to steal your identity.
The Toll Call Scam
In this smishing scam, the message tells the target to call a telephone number that’s actually a toll number with charges as much as $19 per minute. Often, you’re put on hold for long periods of time to increase the charges, which then add up quickly.
The Malware Scam
In this scenario, smishing victims are lured into clicking on text links that leave targeted individuals vulnerable to ransomware or malware—cyber fraud tools can steal all of the information from your phone and use it for purposes of identity theft.
The “Service Cancellation” Scam
In this case, a cell phone user’s SMS message might indicate that they signed up for a service or there’s a premium on an existing service and are asked if they want to cancel, to click on a link. That tricks the user into sharing private information.
The best way to stop smishing scams is to treat them like suspicious emails. Take the same precaution that you would on email to avoid phishing. If you’re not familiar with the sender, content or unsure of the link, don’t click on the SMS text message.”
Also, look for red flags that signal a smishing scam is underway. Just like Phishing emails, these attacks typically include warning signs. SMS messages that have typos and/or grammatical errors should be viewed with suspicion, as should any messages that ask you to respond with personally identifiable information.
