A well-known bank warns customers. Fraudsters have found a new way
Alior Bank warns customers against smishing. Fraudsters send text messages pretending to be trustworthy institutions. In reality, cybercriminals are on the other side.
Alior Bank warns customers against smishing. This is a form of phishing that involves extracting confidential information from mobile phone users using fake text messages.
– The name “smishing” comes from a combination of the terms SMS and phishing. Similar to phishing, smishing is designed to steal sensitive personal information, such as credit card numbers, login details, and other financial information. Smishing is becoming increasingly popular because mobile phones are widely used for everyday communication, and users often trust SMS messages more than emails – the bank emphasizes.
Alior Bank on a typical smishing attack
A smishing attack most often takes the form of an SMS message that appears to come from a trusted institution, such as a bank or a courier company. The message may contain a link to a website that looks like a real website but is in fact fake. A user who clicks on the link and enters their login details unknowingly passes them on to cybercriminals.
– An example of smishing would be an SMS message informing about unauthorized access to a bank account and the need to quickly log in to secure funds. The message contains a link to a page that looks exactly like the bank’s website, but is controlled by fraudsters. Another example is an SMS from a supposed mobile operator offering a discount on new services, which also contains a link leading to a fake page – indicates Alior Bank.
The bank points out that smishing often proves effective, if only because most text messages are read within minutes of receipt, and the response rate is much higher than in the case of e-mails. This makes smishing a very attractive tool for cybercriminals.
Smishing is dangerous because it can gain direct access to financial applications. A smishing attack can result in immediate theft of login data, which in the case of online banking can lead to measurable financial losses.
How to protect yourself from scammers?
Alior Bank provides some tips on how to defend yourself against smishing.
-
limited trust – never click on links in unexpected SMS messages, especially if they come from unknown senders or seem suspicious. Even if the message appears to come from a well-known institution, it is always worth verifying its authenticity by contacting the sender through an official communication channel, e.g. by calling the hotline. Remember, the bank always warns the customer about the use of active links in e-mail or SMS communication if it is carried out outside the bank application. The customer is warned both before entering the process and before sending a message containing an active link, and the link itself is related to the step in the process carried out by the customer,
-
Link verification – if you have to click on a link in an SMS message, first make sure it leads to the correct website. Double-check the website address, looking for typos, extra characters, or other irregularities that could indicate a fake site,
-
avoiding providing sensitive data – the bank never sends text messages containing active links redirecting to online banking login pages. The bank never asks for login details, card details or personal details via text message. Requesting such information is probably an attempt at fraud,
-
using the verification methods provided by the bank – in case of doubts as to the authenticity of the SMS communication, contact your personal advisor or the hotline,
-
Be careful when downloading apps – never install apps that you are directed to via a link in an SMS message. They may contain malware that will allow criminals to take control of your device.