top of page
Search

Mobile Phising: A Serious Threat to Your Personal Data



We do so much on our phones every day: such as banking, social media, and even managing our businesses. Personal information and activity available on our mobile devices are prime targets for criminal activity & phishing attacks, both for personal & business use. Mobile phishing is a constant threat against your data, but what exactly is it, and how do you protect against these threats every day?

Let’s take a look at the main types of phishing attacks and how to recognize them. There are three main ways that phishing scams are designed to specifically target a mobile device. In this article, we will give you an overview of how these attacks operate so you can recognize the threats, avoid falling into these traps, and what to do if you come across them.


Smishing (or SMS-Based Phishing)


SMS-based phishing is sent via text with a link designed to trick you into giving up sensitive data. These texts are meant to look important, but not threatening, so you will click on a link requesting information from you. The phone number given may be spoofed to look familiar to you, making you believe it is a friendly number; so do not always trust that the number is someone you know, even if it looks familiar or that it is from a person you know. Usually the link will likely be shortened, so it is difficult to access if it is a legitimate link before clicking on it.


To avoid this type of scam, pay attention to any unsolicited texts you may receive. Anything that sounds like an ad, offers you something for free, or specifically uses the phrase “limited time offer,” may just be creating urgency to act quickly so you’ll give up sensitive information. Do not click links on texts you did not initiate from a company, such as your bank. If you are unsure of the legitimacy of the text (for example - “There’s a problem with your account”), especially one you did not expect to see, contact that company directly and never through the link provided.


Vishing (or Voice Phishing)


Voice phishing uses similar techniques as smishing, but through a phone call. The people conducting these calls are skilled smooth-talkers who can make you believe they are from a real company requesting personal information for a seemly legitimate purpose.


The simplest way to avoid these types of scams is to never answer calls from numbers you do not recognize, but of course this may not always be possible. If you do answer a suspicious call from a supposed company, be alert and never provide any information such as social security numbers, account numbers, credit card numbers, etc. Hang up, block the number on your phone and contact the company directly. Let them know you received a call from someone claiming to be from that company, and ask if it was legitimate.


Malicious Apps


There are mobile apps for so many things you use on your devices. Apps can request access to your cloud data, camera, location services, etc - giving cyber criminals unfettered access to so much information. Creating unverified apps in third-party app stores is all too easy, and a haven for cyber criminals. These apps can gain access to contacts, passwords and financial account information, and infect your phone with malware. Official app stores can certainly have their share of malicious apps too, however. So be sure to really consider what you are downloading.

The best way to defend yourself against malicious apps is to really pay attention to what you are downloading to your device. Do not use third-party app stores, and if something seems suspicious remove the app from your phone immediately. Only download highly rated apps from official app stores, and consider what you are allowing these apps access to on your device. Check your app privacy settings periodically on your phone to be sure you are not sharing too much information unknowingly.


Mobile phishing is a serious threat to any mobile device user. Be sure to pay attention to what information you are allowing apps access to, what information you willingly give up, and what you are clicking on. Never click a link from a source you don’t know and consider who is really asking for certain information.


For more information on mobile phishing or what to do if you have been a victim of a phishing attack, visit the Federal Trade Commission’s website.

If you receive a mobile phishing scam, be sure to report it to the Federal Trade Commission immediately: https://www.ftccomplaintassistant.gov/

0 comments

Recent Posts

See All

Comentarios


bottom of page