FBI warns of dangerous new ‘smishing’ scam targeting your phone

Smishing, a combination of SMS and phishing, is a type of scam that uses text messages to trick people into giving away their personal information. This form of cybercrime has been around for a while, but recently, it has become more prevalent, prompting warnings from the FBI and various U.S. cities. Hackers have gone as far as setting up over 10,000 fake websites to carry out these scams, targeting both iPhone and Android users.

One common tactic used in smishing scams involves impersonating parking violation departments. Recipients receive text messages claiming they have unpaid parking invoices and threatening daily fines if left unpaid. Cities like Annapolis, Boston, Greenwich, Denver, and others have issued alerts about this ongoing campaign. The messages often urge recipients to click a link to pay an alleged overdue fine, creating a sense of urgency and panic.

The FBI has also raised concerns about a broader smishing campaign targeting U.S. residents, with scammers now impersonating road toll collection services. This evolution of smishing scams shows how cybercriminals are constantly adapting their tactics to deceive unsuspecting individuals.

A recent report by cybersecurity firm Palo Alto Networks’ Unit 42 revealed that these scams are designed to steal sensitive information, including credit card and bank account details. What started as a scheme involving fraudulent toll payment notifications has now expanded to include fake delivery service alerts, luring users into clicking malicious links.

To protect yourself from smishing scams, here are six key steps you can take:

1. Verify before you trust: Treat unsolicited texts with caution and verify claims with the organization directly.
2. Avoid clicking suspicious links and use strong antivirus software.
3. Keep your devices secure by updating operating systems and apps regularly.
4. Use a password manager to protect sensitive information.
5. Report suspicious activity to authorities.
6. Consider using a personal data removal service to reduce exposure to smishing attacks.

As these scams continue to evolve, it’s essential to stay informed and take proactive steps to protect your personal information. By following these guidelines and remaining vigilant, you can safeguard yourself against falling victim to smishing scams. Remember, it’s better to be safe than sorry when it comes to cybersecurity.