How did we ever function without mobile phones?
With 5 billion mobile phones in the world, it’s hard to remember a time without them. The ease and convenience of text messages in particular, has made life much easier. However fraudsters are increasingly using this platform to try and trick us into divulging sensitive information. The danger in the corporate environment is that we frequently use our phones to communicate sensitive information and access company networks. This acts as a magnet to criminals who are keen to get their hands on this valuable corporate data.
Smishing is a type of phishing which uses SMS messages as opposed to emails to target individuals. It's used by criminals to encourage individuals to disclose personal information such as account details, credit card details or usernames and passwords. This method involves the fraudster sending a text message to an individual’s phone number and this usually includes a call to action that requires an immediate response.
Smishing messages purport to be from a legitimate organisation, usually a bank or other financial institution and will almost certainly create a sense of urgency. It may even appear to be from a colleague or your IT help desk. You must confirm your details or your account will be locked or your card cancelled. They usually provide a link or a telephone number for your “convenience”.
You should never reply to these types of messages, if there is an urgent action, stop and think about it reasonably. Smishing cyber-attacks can impact you, your team or your company. Once your smart phone has been hacked, cyber criminals can steal sensitive data, launch attacks, and use your email account to launch a phishing attack on your colleagues or plant malware on servers.
It's important to be cyber aware and educate yourself on the dangers of these attacks and how you can try and prevent them.
To protect yourself from a Smishing attack, you should:
MetaPhish provides a powerful defence against phishing and ransomware attacks by training employees how to identify and respond appropriately to these threats. Get in touch for further information on how we can help protect your business.