SMS phishers pivot to points, taxes, fake retailers
6 days ago
- #e-commerce-scams
- #phishing
- #cybersecurity
- China-based phishing groups are promoting new phishing kits for creating fake e-commerce websites to steal payment card data.
- Scam SMS messages now include lures like unclaimed tax refunds and mobile rewards points.
- Thousands of phishing domains have been deployed, targeting T-Mobile and AT&T customers.
- Victims are tricked into providing one-time codes, allowing fraudsters to link cards to mobile wallets.
- Fake e-commerce stores are harder to detect and can operate for months without being shut down.
- Reporting phishing lures via platforms like smishreport.com helps in quick identification and shutdown.
- Holiday seasons see a spike in smishing, especially package redelivery scams.
- Shoppers should investigate unfamiliar merchants and avoid clicking on suspicious links.
- Check shipping costs, return policies, and monthly statements to avoid hidden charges and fraud.