[SMS] “Sorry we missed you, your package is on hold for pick-up at your local USPS office. Click to confirm.”
Ever received a text message about a missed parcel or a package being held at the post office and they want you to click a link to track your package?
As you watch out for spam or phishing emails in your inbox, you’ll need to look out for “smishing” — a condensed term for mobile phishing attacks via SMS text messaging.
Phishing emails are often designed to pose as a legitimate brand or organization. This makes it easier to recognize as a scam using clues such as poor grammar, typos, or suspicious senders. Unlike phishing emails, smishing attacks are sent as a text message to your mobile phone with an included link that is a shortened URL.
Without design or context clues, recipients are more likely to open a smishing link than a phishing link. As many enterprise employees access work networks on personal devices, smishing attacks rose 37% in the first quarter of 2020.
And as many organizations provide the option to receive real-time SMS updates for deliveries to prevent package theft or online banking notifications, many mobile device users opt-in to receive alerts for a sense of security.
According to Mobile Monkey, SMS has a 98% open rate compared to a 20% email open rate. That means 9 out of 10 people are likely to fall victim to a smishing attack as users are conditioned to trust text messages.
Scammers bait users into clicking a link that infects a mobile device with malware or viruses or asks for personal information as verification.
Protect yourself and do not fall victim to common smishing attacks:
- Never click links, reply to texts, or call back the sender that you do not recognize
- Do not respond with “STOP” or “NO” to opt-out of receiving messages
- Immediately delete suspicious messages
- Make sure that your mobile device is up to date on the latest OS software.
At Strategic Network Consulting, we offer comprehensive mobile security protection to prevent malicious attacks so that you can keep running business seamlessly.
We know the best methods to safeguard your data while still following the required standards for your organization.
As cybersecurity experts, we know how to help you make your networks secure and train your employees to not only keep your business safe but in compliance.