Cybersecurity Alert: Smishing Scams Target Android and iOS Users

The Department of Information Technology urges the members of the Seton Hall University community to remain vigilant against a rising cyber threat targeting Android and iOS mobile phone users. The Federal Bureau of Investigation (FBI) has recently issued a critical alert regarding smishing, a form of phishing conducted via SMS, and is urging users to stop responding to text messages from unknown numbers. 

What is Smishing?

Smishing is a type of scam involving deceptive text messages aimed at tricking recipients into sharing sensitive information or clicking on malicious links. The FBI has identified a surge in smishing attacks fueled by the growing reliance on smartphones for online banking, shopping and communication. These messages often impersonate trusted entities such as banks and government agencies but are created by cybercriminals seeking to steal personal data. Engaging with these fraudulent messages can result in identity theft, unauthorized financial transactions and malware infections. As smishing tactics grow more sophisticated, it is crucial to stay vigilant and take steps to protect against them. 

Common Smishing Tactics

• Bank Fraud Alerts: Messages claiming unusual activity on your account, urging you to click a link to verify transactions. 

• False Tax Refunds: Promises of tax refunds with links to claim funds. 

• Account Suspension Warnings: Alerts from platforms like PayPal, Amazon or Apple demanding verification to restore suspended accounts. 

• Fraudulent USPS Delivery Notices: Unsolicited texts with strange links claiming to require personal information for package deliveries.

• Unrealistic Offers: Messages offering rewards, prizes or opportunities that seem too good to be true. 

Protect Yourself from Smishing 

1. Avoid Clicking Suspicious Links: Do not click on links or download attachments from unknown sources, as they often lead to fake websites or malware. Access official websites directly via your browser or trusted apps.  

2. Enable Multi-Factor Authentication (MFA): Strengthen account security by adding a verification step beyond your password, safeguarding personal data such as bank accounts, health records and social media profiles. 

3. Report Suspicious Texts: Many mobile carriers provide tools and resources to help users identify, report and block smishing attempts.

To further protect your communications, consider using messaging apps that provide end-to-end encryption for secure conversations. Android users can now benefit from Google Messages, which automatically enables end-to-end encryption for their conversations. Similarly, Apple’s iMessage offers built-in end-to-end encryption, ensuring that your messages remain private and protected from unauthorized access.

Cybersecurity is a shared responsibility. By staying informed and practicing these protective measures, the Seton Hall community can contribute to a safer digital environment. 

Categories: Science and Technology