Online Security Updates
Below are links to the latest updates we routinely send our Online Banking customers about a variety of online security topics.
How to Protect Yourself from Smishing Scams
Text message or SMS phishing, called “smishing,” is when cybercriminals use deceptive text messages to lure people into divulging sensitive personal information that can be used to commit fraud. Cybercriminals often impersonate government agencies, banks, and credit card companies to lend legitimacy to their scam.
The smishing message may contain a link prompting the user to provide confidential information such as usernames, passwords, and credit or debit card numbers, or place malware on your device that can be used to intercept messages or quietly collect personal data in the background.
Security experts believe the reason smishing is so effective is that users trust text messages more than phone calls or email. With the adoption of text messages for two-step authentication, where a verification code is sent to you, people are accustomed to receiving text messages that require action from companies they do business with.
Follow these tips to help protect yourself from smishing scams:
- Do not click on links, or call phone numbers listed in unsolicited text messages, even if it is from a company you know and trust. Clicking on the link may infect your mobile device with malware, or may lead you to a site designed to steal your personal information, and the phone number can lead directly to scammers, acting as the company.
- If you receive a text message containing a link from a company you do business with, contact the company through a phone number or email you know to be authentic, not one that may be listed in the text, to verify the message you received is legitimate.
- Do not respond, even if it is only to text “stop.” Responding to smishing messages verifies that your phone number is active and that you are willing to open such messages, which can increase the number of unsolicited text messages you receive. Block the sender and delete the message.
- Do not download apps via a text message. The app may be malicious and can be used to steal your personal information. Apps should only be downloaded from trusted app stores.
- Use the same safety and security practices on your mobile device as you do on your computer. Make sure that you keep your device’s operating system, security software and applications up-to-date.
- Never provide your personal or financial information in response to a text message. Government agencies, banks, and other legitimate companies will not ask for personal or financial information like usernames, passwords, PINs, or credit or debit card numbers via text message.
- If you receive a text asking for such information, contact the company through a phone number or email you know to be authentic to verify the message you received is legitimate.
By following these tips, you can help protect yourself from falling victim to a smishing scam. If you believe that you are a victim of a smishing scam, contact the company or government agency that the cybercriminal is impersonating and immediately report it. If you entered personal data, change any passwords for accounts you believe may have been compromised. You can also report it to the Federal Trade Commission.
Thank you for being a Third Federal customer.
