bov-logo
Log in
HeroImage

SPOT THE SCAM

A spotlight on Smishing: Further ways to avoid it

Smishing is when scammers use text messages to deceive people. Attackers try to get you to download malware, share credit card numbers, personal data, or send money.

Smishing comes from a blend of two words – ‘SMS’ and ‘Phishing’ and it is also falls under the umbrella of Social Engineering tactics.


Smishing and what it entails


In a previous article on Smishing, we shared tips to help you spot scam text messages and avoid these kinds of attacks.

Keep in mind that:
bullet-item
these fake messages can come from unknown senders
bullet-item
they often use an urgent tone
bullet-item
some of these messages promote deals that seem too good to be true
bullet-item
other messages ask you to click on links with suspicious URLs.



Other smishing attacks


As many are noticing, scammers are becoming more sophisticated in their ways. Their deceptive techniques are becoming more refined. Yet, there are still ways you can identify smishing attacks.

Here are a few other evaluations to make when receiving text messages that can be scams.


The use of generic greetings


Scammers will use highly generic openings such as ‘Hi Sir/Madam’ or ‘Dear Customer’ or ‘Hello’ in a text. This is because they do not have the data or the resources to customise texts. However, a legitimate corporation would use your personal name.

Be wary of answering any text messages with ‘Hello Customer’ claiming to be from us. When we send you text messages, we send them in bulk with no greeting. More importantly, we never ask for personal information!


Unusual requests


If you receive a message about a parcel or invoice you were not expecting or a request you never made, it might be smishing.

These kinds of messages come with a malicious link as a means to confirm what in reality is, a fake delivery. They usually ask for more information, usually of a sensitive and personal nature.


Poor grammar and spelling


Look for spelling mistakes and typos. Some of these cyber criminals do not speak English well as they are not native speakers of the language. Thus, they might make mistakes in the language quite easily.


Verifying through official channels


Check the phone number of the mobile device you received the text from. Conduct a search to determine if it truly belongs to the company it claims to be from. You can actually call or contact the company directly to verify whether they actually sent the text message.

Avoid signing into an account through a link sent in a text message. Log into your account directly from your web browser.


What to do if you’ve been scammed through Smishing


Here are some steps you need to take if you’ve fallen prey to a smishing scam:
bullet-item
If you have given your bank account or credit card details, use our online form to report the scam and contact us right away.
bullet-item
Log into any accounts you suspect may have been hacked or accessed by hackers. Change these passwords and if you have used these passwords before, change them again! Always make sure to keep your devices secure.
bullet-item
Report the scam to the police so they can record the incident and warn others if the scam is more far reaching.
bullet-item
Block the number that sent you the Smishing text. If they label you as an easy target, they will attempt to scam you again later.


If you can stop the hackers from using your data to access your accounts and your money in time, consider yourself lucky! However, prevention is always better than cure! The best form of protection against smishing is to be wary of any unexpected text messages.


Conclusion


Smishing involves tricking people through deceptive text messages. These messages often come from unknown senders. They use an urgent tone and have suspicious links. They also appeal to people's desires.

These attacks can feature generic greetings, unusual requests, typos, or fake websites.

If you think someone has hacked you, contact your bank if someone shared your financial details. Change the passwords for any hacked accounts. Report the scam to the police and block the sender.