"FINAL WARNING: Your account has been suspended due to suspicious activity. Click here to verify: [fake-link.com]"
Have you ever received a text message like this? This is "Smishing"—a form of phishing that uses SMS text messages to lure victims into providing sensitive information.
Characteristics of a Smishing Text
Scammers use "fear of loss" or "sense of urgency" to make you act without thinking:
- Urgent Language: Words like "Immediate action required," "Suspended," or "Unauthorized login."
- Suspicious Links: The URL often looks slightly off (e.g.,
bank-security-login.cominstead ofbank.com). - Requests for Personal Info: A real bank will never ask you to provide your password or full Social Security number via a text link.
What Happens if You Click?
If you click the link, you'll likely be taken to a website that looks exactly like your bank's login page. Once you enter your credentials, the scammer captures them and can drain your accounts in minutes.
How to Stay Safe
- Never Click the Link: If you're concerned about your account, close the message and open your bank's official app or type their website directly into your browser.
- Look for "Short Codes": Many legitimate businesses send texts from 5 or 6-digit short codes. If the text comes from a full 10-digit number, be extra cautious.
- Forward to 7726 (SPAM): Most major carriers allow you to forward suspicious texts to 7726. This helps them identify and block scam numbers.
How to Report
- Contact Your Bank: Use the customer service number on the back of your card to report the phishing attempt.
- Report to the FTC: Use reportfraud.ftc.gov.
Remember: Your bank already has your information. They will never ask you for it via a text message link.
About this safety guide
Our team at Scam-Watch works tirelessly to document emerging threats. This guide was produced using real-world data and expert analysis to help you stay safe online. If you've encountered something similar, please report it.