Fraud & Security

Protect your business from text message scams

What is ‘smishing’?

Text message scams or `smishing` is fraudsters using text messages to trick you into divulging sensitive information like PINs and passwords. The message will often appear to be from a legitimate source and may ask you to click on a fake link or open an attachment.

The links or attachments may redirect you to a fake website which could compromise your account details or attempt to infect your device with a virus.

The message may set the ‘alpha tag’ on the message to appear to originate from a genuine company (the alpha tag is the name at the top of the message, telling you who sent it).

What to look out for

Actions you can take

  • Never reply to a suspicious message.
  • Never call the telephone number in the message. Always contact the bank using a number you know and trust.
  • Exercise care when using public Wi-Fi networks.
  • Keep your phone's operating system up to date and don’t install apps from un-trusted sources. Consider using anti-virus software for your phones and tablets.
  • Share this page with employees and colleagues, so they know what to look out for. Put training in place, so people know how to spot suspicious texts and other threats.
  • For the latest cyber security advice and resources, visit the National Cyber Security Centre (NCSC).
  • If you’ve clicked on a suspicious link, run a scan with your antivirus software to check your device for any malicious software.
  • Forward any suspicious texts referring to RBS International