Severe Surge in SMS Phishing Attacks

Fri, Sep 07, 2012 by Mary Landesman

During the first week of September, Cloudmark observed a 913% increase in the volume of SMS phishing attempts, making SMS phishing currently the single largest SMS text messaging threat. The surge appears to be the result of a single set of attacks which initially started on September 4th. Thus far, attackers have used over 500 unique pitches in the phishing scams, but the general characteristics are as follows:

Fwd:Good Afternoon .Attention Required Call.(xxx)xxxxxxx

The phone numbers victims are instructed to call include:

2012040735
2055612208
2105278888
2814920248
3124924053
3474105894
4016488505
5612357256
6164993061
6783847527
7145911051
7272162029
7739121434
8164101809
8177863304
8323086322
8645825454
8667368703
8775924747
8888408034
9738818000

Investigation reveals the attackers are using several phone ploys to trick victims into divulging sensitive credentials. These ploys range from claims of Bank of America account suspensions, Macy’s credit card collections, and even the U.S. Veteran’s Administration health services.

Victims who fall for the phishing scam and divulge their credentials risk being subjected to bank account theft, credit card fraud, and even outright identity theft. Stolen information can even be used in social engineering scams to elicit further information from unrelated accounts.

If you’ve been the recipient of this SMS phishing attempt, forward the text to short code 7726 to notify your carrier and to facilitate resolution. And remember, never divulge sensitive information to any source you have not fully vetted. When in doubt (which you always should be) contact your bank, credit card company, or health provider by known good numbers you have on file – never respond via the contact details provided in an unsolicited SMS text.

15 Responses to “Severe Surge in SMS Phishing Attacks”

  1. Phishing attacks via text spiked this week — researcher « News Flash Says:

    [...] several phone ploys to trick victims into divulging sensitive credentials,” she wrote in a blog post today. “These ploys range from claims of Bank of America account suspensions, Macy’s [...]

  2. Phishing attacks via text spiked this week — researcher | Partners In Sublime Says:

    [...] several phone ploys to trick victims into divulging sensitive credentials,” she wrote in a blog post today. “These ploys range from claims of Bank of America account suspensions, Macy’s [...]

  3. Phishing attacks via text spiked this week -- researcher - Latest Technology - News & Articles Says:

    [...] several phone ploys to trick victims into divulging sensitive credentials,” she wrote in a blog post today. “These ploys range from claims of Bank of America account suspensions, Macy’s [...]

  4. Phishing attacks via text spiked this week — researcher | DVD IPAD Says:

    [...] divulging supportive credentials,” she wrote in a blog post now. “These ploys operation from claims [...]

  5. Phishing attacks via text spiked this week — researcher | My GSM Says:

    [...] several phone ploys to trick victims into divulging sensitive credentials,” she wrote in a blog post today. “These ploys range from claims of Bank of America account suspensions, Macy’s [...]

  6. Phishing attacks via text spiked this week — researcher Says:

    [...] several phone ploys to trick victims into divulging sensitive credentials,” she wrote in a blog post today. “These ploys range from claims of Bank of America account suspensions, Macy’s [...]

  7. Privacy + Anonymity » Are You Getting Attacked Through Your Phone? Says:

    [...] several phone ploys to trick victims into divulging sensitive credentials,” she wrote in a blog post today. “These ploys range from claims of Bank of America account suspensions, Macy’s [...]

  8. Security firm notes sharp increase in SMS phishing attacks Says:

    [...] published a blog post, which includes a list of the phone numbers the scammers are [...]

  9. SMS phishing attacks skyrocket as summer ends Says:

    [...] In the first week of September, SMS phishing attacks rose by 913 per cent, making spam the number one text-based threat, according to a report from Cloudmark. [...]

  10. Phishing attacks via text spiked this week researcher | HaLaPicHaLaPic Says:

    [...] phone ploys to pretence victims in to divulging supportive credentials,” she wrote in a blog post today. “These ploys operation from claims of Bank of America comment suspensions, [...]

  11. SMS Phishing Attacks Skyrocketed Last Week Says:

    [...] week of September, SMS phishing attacks rose 913 percent, making spam the No. 1 text-based threat, according to a report from [...]

  12. Severe increase in the volume of SMS phishing attempts Says:

    [...] Inc. a US messaging infrastructure and security solutions provider has reported a 913% increase in SMS phishing attacks during early September. According to the report:“Victims who fall for the phishing scam and [...]

  13. Mobile Targeted Messaging and A/B Split Testing | OtherLevels Says:

    [...] week of September saw a 913 percent increase in the number of phishing attacks sent out using SMS, Cloudmark reported. The scams used more than 500 different pitches, underscoring the importance of writing [...]

  14. Is that a Scam in your Pocket? « Bulletin's Blog Says:

    [...] return for the scammers. Unfortunately, SMS phishing schemes (smishing) are on the rise, with one recent report observing a 900%+ increase in scam messages in September 2012.  While there are other threats [...]

  15. SMS phishing attacks skyrocket as summer ends | ITProPortalITProPortal.com Says:

    […] In the first week of September, SMS phishing attacks rose by 913 per cent, making spam the number one text-based threat, according to a report from Cloudmark. […]

Leave a Reply
(will not be published)
Submit Your Comments

* Indicates a required field

Learn More About Cloudmark
Our Products
News and Events
Site Map  •  Privacy Policy  •  ©2002–2014 Cloudmark, Inc.