SMS messages have become a fundamental communication tool for companies, as they are very reliable when distributing them (and with a very high open rate). Using Verified SMS by companies like Google also adds a layer of security which today is very important.
Many people, when they receive a message, are a bit worried about possible fraud or scams they can suffer from. And they are right to be attentive: unfortunately, fraud attempts on the web and digital communications (SMS, emails, etc) are very common and risky.
The Spanish Observatory for Informatic Crime has detected over 210.000 crimes in 2019, when in 2013 there were only around 42,000. Through phishing (or smishing, as has been called the act of fraud through SMS), criminals can steal personal data, passwords, and other sensitive data. For this reason, next we will give you details on how these illicit messages are sent and how to detect possible fraud in text messages.
It’s useful to know how these fraudulent messages are sent to differentiate our campaigns. In this way, we will avoid fear or confusion in our receivers, obtaining better results and engagement in any communication. The summary is simple: to transmit reliability in the sender field of the message.
Knowing about the main methods that attackers use when committing fraud with text messages, you can take precautions and safety measures in consequence.
1 Lastly, you have to check any type of sensitive information. For example, if you get an alert message from the bank, you can confirm with a phone call or an email. Consulting with the platform that supposedly sent the SMS can save you from a phishing attack. As a general rule, financing entities and the majority of companies never ask for information via SMS or email. Any arrangements should be made within the app or control panel once you have entered the account correctly. Then, we should be suspicious of any message that asks for data or credentials.
2 Pay attention to the domain or subdomain at the end of the link. Check that it’s always done through HTTPS connections and that the certificate is correct and belongs to the entity we want to visit.
3 It’s advisable to activate the 2FA authentication in any web or platform we use, especially all those that are related to transactions or financial operations. The majority of these platforms have a 2FA with SMS, call, or apps like Google Authenticator. In this way, even though somebody may have our credentials, they won’t be able to access our account or data.
4 When facing any issue or problem, we recommend that you contact Customer Support directly and not to follow a possible fraudulent URL.
5 Don’t trust senders you don’t know and with whom you don’t have any commercial relationships. Especially if they are asking for data or authentication. This means that, if you’ve never received an SMS from your bank, then don’t trust a new one even if it seems legit.
6 Always be attentive to all the details. Read and re-read SMS many times to look for evidence of fraud. If it doesn’t have a sender, if it has spelling mistakes, suspicious URLs… these are red flags. When in doubt, you should avoid the message. In this case, you should contact the company to obtain more details about the case.
If you want to increase the trust of your users in your SMS to avoid them ignoring the message for fear of fraud, we offer the best solution with our LabsMobile platform that include:
Besides all the features you need for your campaign to be successful, you’ll also be able to access Verified SMS by Google without an additional cost. If you’d like to know more, you can read this article about it or communicate with our team. We’ll be happy to help you!