Smishing is a combination of the words “SMS” and “phishing” – a form of a cyberattack where the victim is tricked into believing that a message was sent from a trusted organization asking the receiver to click on a link to update personal information or provide other information such as login credentials.
Recently, several Banks and their customers have been the target of Smishing scams, particularly since start of the COVID-19 pandemic.
The good news is that there are some easy steps you can take to keep your accounts secure.
What to look for?
There are several indicators that help in identifying an email or text messages scams, including:
- Generic greetings – Instead of using your name, many fraudulent messages start with “Dear customer” or no greeting at all
- Inconsistencies in web address – Look out for suspicious links. If it appears suspicious, do not click the link. Always go directly to the Bank’s website, rather than using the links sent in messages.
- Urgency – Fraudsters make their messages sound very urgent and alarming, to try and panic you into believing them before you realise it is a scam. We will not try to rush or panic you.
- Messages asking for your personal information. MeDirect never asks you via email or SMS to update your details, provide credentials or claim that your account will be deleted or blocked unless you take immediate action.
What can you do?
- Do not reply to any text messages that ask you about your personal finances.
- Do not click on any links. MeDirect employees will never send you emails and phone messages with links to login or update details.
- Do not share your bank login with anyone, even if the person claims to be a bank employee.
- Take your time. And if in doubt, double check.
- Report the message to the Bank at your earliest.
How to report?
If you have received or clicked on a suspicious email or SMS that claims to be from MeDirect, please contact us on (+356) 2557 4400 or on firstname.lastname@example.org.
Keep in mind, that if a request seems suspicious, it probably is! Be wary of any unusual requests and trust your initial judgement.
Example of a Smishing scam:
MeDirect Bank (Malta) plc, company registration number C34125, is licensed by the Malta Financial Services Authority under the Banking Act (Cap. 371) and the Investment Services Act (Cap. 370). MeDirect Bank (Malta) plc, The Centre, Tigné Point, Sliema, TPO 0001, Malta.