Various Smishing Techniques
- Sending a link that triggers the downloading of a malicious appThe example message prompts the user to enable banking facilities. In Smishing campaigns, these kind of messages linked towards apps are often designed to track keystrokes, steal identity or even control of phone to hackers, or encrypt the files on phone and hold them for ransom.
- Linking to information-capturing formsin the same way as email phishing campaigns aim to direct their victims to online forms where their information can be stolen, this technique uses text messages to do the same. Once a user has clicked on the link and been redirected and the information shared can be read and misused by fraudsters.
- Messages with Warning signs which need immediate action: Smishers entice their target with highly personalized and emotionally targeting bait text messages. It is important to know that these smishers sometimes target users by collecting basic information about them to make user trust them.
- Referrals to tech support.Again, this technique is a variation on the classic tech support scam, or it could be thought of as the “vish via smish.” An SMS message will instruct the recipient to contact a customer support line via a number that’s provided. Once on the line, the scammer will try to pry information from the caller by pretending to be a legitimate bank representative.