What makes a product great? It is simple and easy to use, robust and functional.
So, what makes Text messages so popular?
What began as a way to communicate with a handful of your closest contacts quickly has now connected us with friends, strangers, and businesses all around the world.
We now have WhatsApp, Messenger, Snapchat, & an ever-growing list of text apps in our lives.
While it remains a quick and efficient way to send messages, texting has evolved to be a far more sophisticated tool for sharing information.
According to Gartner, Text messaging is by far the most responsive way to communicate remotely: People frequently ignore phone calls and emails, but 98% of text messages are read, and 45% get a response.
Here is the challenge: Text messaging or SMS, for short message service, can leave companies wide open to social engineering attacks, referred to as “smishing.”
The threat has become exacerbated amid a mostly remote workforce that has turned to platforms including Slack, Skype, WhatsApp, and iMessage to reach each other quickly.
The heightened popularity of text-based communications is the very thing that makes it susceptible to smishing, where texts that seemingly come from trusted sources include, for example, downloadable malware or links to phony websites.
How do these attacks work?
Scammers pose as banks or online retailers sending you a “legit-looking” text message that creates a sense of urgency, asking you to update your account or information because it might be “compromised.”
Once you click on the embedded text link, you will then be redirected to a page that is nearly identical to your bank’s website or other trusted sites that appear familiar to you.
Here are two examples:
What are cybercriminals after?
Like most cybercriminals, they are out to steal your personal data, which they can then use to steal money, usually yours. But sometimes also your company’s.
Cybercriminals use two methods to steal this data.
They might trick you into downloading malware that installs itself on your phone.
On the other hand, the link in the smishing message might take you to a fake site where you’re asked to type sensitive personal information that the cybercriminals can use to steal your online ID.
How To Protect Yourself From Smishing?
I encourage you to ignore messages from unknown people or businesses.
Be suspicious of “urgent” texts.
Do not click on a link or even respond to the requestor that you did not ask for it in the first place.
If you think it is a legitimate message, then verify. Find another way whether the story is true.
Generally, no financial institution or merchant will send you a text message asking you to update your account information
Don’t store your credit card banking information on your smartphone. If the information isn’t there, they can’t steal it.