New SMS Phishing Campaign Targets T-Mobile Customers

Bitdefender Small Business Security

The New Jersey Cybersecurity & Communications Integration Cell (NJCCIC) has issued a warning of a new smishing campaign targeting T-Mobile customers.

Phishing attacks are typically deployed via spam email and use convincing messages to trick the victim into divulging personal data or credit card information. The tactic has been modeled to also use the Short Message Service (SMS) as a harboring medium for malicious links, earning it the name Smishing (SMS + phishing).

In this case, the message thanks recipients for paying their bill and includes a malicious link to accept a free gift. It’s virtually identical to a recent campaign targeting Verizon Wireless customers.

The message, which includes random recipients, is sent via group text, so customers are unable to block the unwanted messages.

Victims were likely targeted due to past breaches that affected T-Mobile, according to the NJCCIC, which operates within the state’s Office of Homeland Security and Preparedness and deals with these types of incidents.

Recipients are urged to report the spamming number by forwarding to 7726 (SPAM).

Bitdefender Mobile Security for Android features a new technology called Scam Alert which alerts users to malicious links arriving via SMS, messaging apps and even notifications.

Bitdefender’s Web Protection is designed to catch phishing links regardless of where they originate from (email, websites, etc.). With the new Scam Alert feature, users are warned that the link in their message or notification is dangerous even before they might try to access it.