SMS messaging: the gateway to scammers and fraud

In recent weeks, Bolsa Familia beneficiaries have been the target of a growing SMS fraud scheme, with malicious links that install viruses and compromise personal data and passwords.Inclusive, the Ministry of Development and Social Assistance, Family and Hunger Combat (MDS) itself has issued a warning about these scams, which have affected families throughout Brazil.

In addition to the specific scam directed at the beneficiaries of Bolsa Familia, the SMS channel has been shown to be a preferred means by criminals. Recently, scammers have used tactics such as the SMS of Correios’, false offers of benefits and scams related to card transactions, all aimed at extracting sensitive information and conducting financial fraud. 

Unlike email, which has anti-spam systems to filter malicious messages, SMS is a more open and vulnerable means. “The protection offered by anti-spam services in emails helps deflect most fraudulent messages, but SMS is still a breeding ground for scammers.This is because many users do not exercise the same caution with text messages, believing them to be safer.”, explains Alessandro Fontes, co-founder of Trusted Site, a free platform that assists consumers in verifying the reliability of websites.

Users often rely on SMS messages due to the belief that only large companies have access to shipments through “shortcodes” SHORT numbers used to send bulk messages.However, this access is now within the reach of criminals, who use these tools to deceive victims.The use of shortcodes by scammers has become more common, facilitating the spread of fraud.

 Recently, several scams have been circulating via SMS, highlighting the growing threat of this channel. Among the most notorious are the coup of the false benefit to receive, the “MS of the Post Office”, the coup of bank points and miles, the scam of the false card transaction and even the fine for access to X via VPN. These scams have in common the use of SMS to carry out attacks of “phishing”. 

The term “phishing” refers to fraud techniques in which scammers impersonate trusted entities to obtain sensitive data.In the case of SMS scams, criminals often use malicious links to install viruses or redirect users to fake websites 

1-Do not open any link received by SMS. The government or entities will not condition any benefit to an action carried out through a link sent by SMS.

2-In case of doubt about the access to your bank account or about the receipt of any benefit, contact directly with the institutions through the official channels.

3-Use link verification platforms such as www.siteconfiavel.com.br, which help to check suspicious links for free.

4-Watch out homographic URLs: these are links that seem to lead to real websites, but are manipulated to look official and can be difficult to identify with the naked eye.

5- In addition to not clicking on links, never share information received by SMS, such as security codes or passwords. This can facilitate the invasion of your social networks or bank accounts.

“In an increasingly vulnerable digital environment, it is critical that users are aware of the risks associated with fraudulent SMS. Criminals are increasingly sophisticated and adapting their tactics to exploit people's trust. Stay informed and always check the authenticity of incoming messages to protect your personal and financial information”.