You know that feeling of dread when you get a message telling you that you have a fine or an unpaid bill that’s outstanding? In a rush to avoid paying extra in penalties, you rush to pay off that bill, only to discover that you’ve just been scammed. It turns out that a dangerous text message scam has been making its rounds in the US, affecting both iPhone and Android users in the process.
A 600% surge
Law enforcement agencies are warning iPhone and Android users to be on the lookout for scam text messages. These messages basically tell the victim that they have an unpaid toll. The text message includes a link to a website where users can make payments. However, this is a very common phishing technique.
The victims are taken to a website that looks legit. It looks like the toll company’s website. However, that isn’t the case. The money you’re paying goes to someone else—the attackers. The best-case scenario is that you’re out about $50. The worst-case scenario is that the attackers steal your payment information, like your credit card numbers. They could also steal other personal information like your name, email address, home address, and more.
This is not the first time we’re hearing about this iPhone and Android text scam. Back in February, there were already reports of these “unpaid toll” scams making their rounds. However, the latest report suggests that it has seen a surge of about 600%. This suggests that the scam is particularly effective.
Protecting yourself from these scams
So, what should you do if you receive these types of messages? The answer is simple—delete them. In fact, this is a best-practices kind of situation. If you receive an email, text message, or instant message from someone you don’t know, the best thing to do is ignore it. This also applies to phone calls; you should just ignore calls from numbers you do not recognize.
It is tempting to respond to these messages, especially if they sound urgent. Many attackers rely on a sense of urgency to get you to drop your guard. For instance, some phishing attacks involve a message telling you money is being withdrawn from your account, and you have to click this link to stop it.
So, instead of clicking the link next time, just log into your bank account by entering the address yourself. You can also call your bank directly to verify the information. Stay safe out there!
