We live in an era where technology makes our lives easier in practically every area, but, at the same time, we are exposed to various risks. For example, at any moment a text message could arrive from our bank inviting us to make bank transfers to pay unpaid invoices or bills, asking for our personal data or to enter the relevant bank details. This is a typical example of smishing, or a computer scam via SMS.
The main aim of scammers is to steal the victim’s identity and money via a simple SMS. The term smishing is in fact the union of two words SMS and PHISHING (online scam). This is precisely a cyber attack carried out via a text message.
Cyber criminals exploit the fact that people, receiving messages apparently from their banking institutions, tend to respond. Making use of social engineering or psychological manipulation that aims to stir up feelings of fear or guilt, they induce the victim to act, inevitably falling into the trap.
However, it is possible to detect a smishing attack without falling victim to it. First of all the signs not to be underestimated is that the SMS usually comes from an unknown number and the person sending the message usually asks to send money, click on a certain link, download an app, reply to the message specifying personal data or call a certain number.
Given scammers’ use of social engineering, if the SMS you receive causes feelings of fear or guilt, then you should remain alert.
The messages that arrive could have a different nature, such as proposing super advantageous offers or having won a prize or, again, a competition that you don’t remember having participated in.
Scam SMS often present themselves as messages from companies or organizations that you know or in any case important entities that you trust, such as your bank or a well-known public body. The impostors pretend to be one of these organizations precisely because they know that people are more likely to trust them. However, to avoid falling into the trap, you just need to know the three main SMS scam tactics:
- SMS from a financial institution – Action-prompting message asking you to enter personal details.
- Smishing through Malware – SMS that invites you to download an app or software on your smartphone but in reality, once installed, it will be a virus that steals sensitive data stored in the mobile phone’s memory.
- SMS to send money – Help message from a friend asking to be helped by sending money. In this case the criminal uses the famous social manipulation, triggering feelings of panic, fear and guilt that lead people to act quickly and send money. When you receive these messages, just stop for a second, think and be wary of these text messages that aim to trigger a feeling of sudden panic.
The phenomenon of Smishing, although it is increasingly frequent and sometimes difficult to identify, can only cause real damage if the actions requested in the messages are carried out. To avoid falling into this trap, just keep four main rules in mind:
- Never reply to a message from a number not in your address book. If it seems suspicious delete it without thinking twice.
- Never click on unknown links or call the telephone number listed in the SMS before doing so.
- Never share your PIN, password, email or any type of personal data requested in the message, no bank or similar body would ever ask you to provide personal and sensitive data via SMS.
- No banking institution sends SMS asking you to update or verify your account information. If you receive messages from your bank asking you to click links, it is definitely a scam. Should you have any doubts, simply call your institution or banking institution to ask for more information.
Therefore: the simplest way to protect yourself from these cyber scams is to NOT ACT. Failure to respond or not carry out the actions requested in the message makes an SMS harmless and you will not fall victim to any scam.
latest posts published
Lokky, the Italian data driven insurtech for professionals and SMEs
An ally for cyber security: Load Balancing
Business Trend 2023 for SMEs, professionals and commercial activities
Occupational risks for pastry shops
How to read a pay slip
What are the most common cyber risks and how to protect yourself
Clinical Risk: What it is and What are the consequences
Commercial activities most affected by theft
October is European Cyber Security Month
