Key Takeaways
- Genuine businesses use unique short codes for messaging, not regular phone numbers. If you see a message from a generic number, exercise caution.
- Check for suspicious links in messages from unknown sources; they could lead to phishing sites.
- Grammar errors, demands for immediate action or phone calls, and generic addressing are signs of a smishing scam.
Received a suspicious message that looks real, but something about it seems off? It might be a smishing scam. This cybersecurity attack uses fake text messages to trick unsuspecting users into clicking malicious links and sharing sensitive information or downloading malicious software—but you can learn the tell-tale signs.
1The Message Is From a Strange Phone Number
Smishing text messages can appear to come from different legitimate sources to convince users to reveal their personal information. However, one tell-tale sign of a smishing attack is that the sender often uses a regular 10-digit contact number.
Businesses rarely use generic contact numbers to message you. You’ll be contacted by phone or text using a unique and recognizable short code. If you receive a message from an unknown contact number, avoid replying or clicking any links.
2The Text Contains a Suspicious Link
Another easy way to spot a smishing text is by checking if the message includes a link. While the sender may pose as a legit business, you’ll find that the link doesn’t match the company’s official website.
Scammers might use shortened URLs or introduce minor misspellings or extra characters to trick unsuspecting users into clicking the links included in their messages.
These links, which lead to phishing websites, might try to steal your login credentials or have you download malicious software onto your device. Given this, while it’s essential to know how to spot a smishing text, it’s just as important to learn how to identify a phishing website, should you accidentally navigate to one.
3You’ve Spotted Spelling or Grammar Errors in the Message
I’ll admit it was easier to spot smishing scams in the past when scammers had to rely on their own skills to write messages. These texts often included obvious spelling and grammar errors, which made them easy to spot and, of course, ignore.
Now, though, thanks to all the things you can do with ChatGPT and other AI tools, it’s easy to craft a relatively polished message. That said, mistakes can still arise. If you see any unusual phrasing or awkward wording, ignore the message, and consider it a red flag. It goes without saying that if the message includes spelling or grammar errors, it’s almost certainly not from an actual business, and you’re best off leaving it be.
4The Text Requires You to Call Another Number
Scammers might try to get you to call a number by claiming they could not deliver a package to your home, that you won a giveaway, or that you owe someone money. If the message you received includes a phone number that you’re asked to call, you might want to exercise caution and do some more digging before responding.
For instance, if the message states you missed a delivery, check your online accounts to confirm any missed packages. You can also call the company directly to verify the details in the message before you call the provided number.
Remember that scammers can use different messaging platforms to reach out to you. Some of these platforms, like WhatsApp, may also allow you to report scam messages.
5The Text Does Not Address You By Name
Scammers seldom target people individually. Instead, they often send generic messages to as many people as possible. So, if you receive a suspicious message that doesn’t address you by your name or doesn’t make reference to any specific details about you, it’s best to ignore the message.
6The Message Demands Immediate Attention
A tell-tale sign of a scam is that it demands your attention. Often, these messages include language designed to create a sense of panic.
For instance, a scammer might claim your bank account is suspended and that you must visit the bank’s official website (using the link provided in the message) to reset your account or credentials immediately. This is a common tactic used to prompt unsuspecting victims into acting impulsively.
Cybersecurity attacks are on the rise. So, be sure to familiarize yourself with at least the more common smishing and phishing scams, so you can remain safe.
