The Australian Communications and Media Authority (ACMA) has issued a warning to be on the lookout for loyalty point SMS phishing messages (smishing). The ACMA has witnessed a sharp rise in reports of shopping points and rewards-based SMS scams.
These scams impersonate trusted brands that have well-known loyalty programs, including companies such as Coles, Woolworths, Optus, and Telstra.
These scams try to create an urgent need for you to click on a link to redeem your points or rewards before they expire. The link then takes you to a malicious website that looks like the real thing and prompts you to provide your login or financial details, which the scammer then steals.
What Is Smishing?
Like email-based phishing attacks, smishing is a social engineering attack that uses mobile text messages to trick the recipient into downloading malware, visiting a malicious website, sharing sensitive information, or sending money to cybercriminals. The term “smishing” is a combination of “SMS”—or “short message service,” the technology behind text messages—and “phishing.”
Smishing Warning Signs to Lookout For:
- Suspicious or unknown sender phone number.
- These messages often include deceptive website links with unusual URLs that take you to a malicious website.
- Scammers will try to rush you claiming you need to urgently act by clicking on a link.
- Receiving prize alerts for contests you did not enter.
How to Protect Yourself:
If you are unsure if a message is genuine – stop and check. Do not rush to act.
Never click on any links or provide any personal or financial details if the sender is unknown or suspicious. If you need to check a message is genuine, contact the business using details you confirm yourself – for example, via an official website, a bill, or an app.
Please report these messages to your telecom provider to help protect others and to block these messages.
Telstra – Forward the SMS message to 7226 (Further details here).
Optus – Report the message to Optus ScamWise (Further details here).
If you think you have been scammed, contact your bank immediately to stop any payments, contact the impersonated company, and report it to Scamwatch.
Scammers target everyone. Talk with your friends and family – especially if they are in potentially vulnerable circumstances – about how to identify scams.
Stay informed:
- ACMA’s tips for dealing with phone scams.
- Scamwatch’s advice about protecting yourself.
- IDCARE can help if your identity has been compromised or stolen. Call 1800 595 160 or visit idcare.org.
Source:
Recent Comments