Scam of the Week – Nectar Customers Targeted with Text Message Phishing Scam

Nectar has warned its 19 million customers about a new text message phishing scam aimed at stealing their personal data.

The text message appears to come from the official Nectar loyalty scheme and offers customers double points if they click on a link and log in to their online account.

The message informs cardholders that as it is the loyalty card’s 10th anniversary, they are entitled to the double points bonus.

Users believe they are following a legitimate link through to the Nectar Login page, but are in fact directed straight through to a phishing website set up to steal their personal information.

Image: Nectar Phishing Text

Source: This is Money

Nectar was quick to inform customers that the message is fraudulent and urged anyone who received the text not to click on the link but to delete the message immediately.

The company also said it was not its 10th anniversary and that the loyalty scheme was launched 16 years ago in 2002.

In response to the scam, Nectar released a statement: “Customers should always be mindful of phishing scams. After being alerted to a phishing message in circulation we immediately issued a warning advising customers it is not from Nectar and to delete it.

“Nectar will never ask a customer to reveal their password or ask for any financial details to access your account.  Look out for any emails that ask you to provide these types of details and when logging into Nectar, always make sure you see the green padlock in your browser bar.

Red flags to look out for on a suspicious email or text message include threatening language, a generic greeting, poor grammar, spelling mistakes, a mismatched URL, claims of prizes or a request for personal information. Legitimate businesses will never send emails or texts requesting you click on a link to enter or update personal data.

MetaPhish has been designed to provide the first line of defence against phishing and ransomware attacks. Contact us for further information on how we can help protect your business from this growing threat.

about the author

sharing is caring

Share on linkedin
Share on twitter
Share on facebook

you might enjoy reading these

What is Credential Stuffing

What is Credential Stuffing?

Credential stuffing has been dominating the headlines in recent years and has fast become the attack method of choice used by cybercriminals. Between January 1,
Read More »
Protecting Charities from Cybercrime

Protecting Charities from Cybercrime

This week is Charity Fraud Awareness Week and it’s been specifically set up to provide charities with valuable advice on how they can protect themselves from the threat of fraud and cybercrime.
Read More »