Jericho Security | Glossary

Jericho's Cybersecurity Glossary | SMS-Phishing

Written by Jericho Security Team | September 28, 2024

Definition:

SMS phishing, or smishing, is a type of phishing attack where an attacker sends fraudulent SMS messages to trick individuals into divulging personal information or downloading malicious software.

Use Cases:

  • Used by attackers to steal login credentials or financial information by tricking users into clicking on malicious links in text messages.
  • Employed in phishing campaigns that appear to come from trusted sources, such as banks or service providers.

Related Terms:

Questions and Answers:

  • How does SMS phishing work?
    Attackers send fraudulent text messages that contain malicious links or fake prompts, tricking users into providing sensitive information or installing malware.

  • What are the risks of smishing attacks?
    Smishing can lead to the theft of personal information, account takeovers, and financial fraud if users fall for fake messages or links.

  • How can users protect against smishing attacks?
    Users can protect themselves by avoiding clicking on links from unknown or suspicious numbers, verifying messages from trusted organizations, and using mobile security software.