What is smishing, and how can we reduce everyone's risk with 7726?

Smishing is a social engineering attack that uses SMS text messages to trick people into giving away their personal information or downloading malware onto their mobile devices. The text messages often appear to be from a legitimate source, such as a bank or a government agency.

The message may ask the recipient to click on a link or call a phone number to update their account or claim a prize. Once the link is clicked or the phone number is reached, the victim may be directed to a fake website that looks legitimate. On a fake website, the victim would be prompted to enter personal information, such as their login credentials, Social Insurance Number, or credit card information. The malware may also be downloaded via the website, where it can begin harvesting the victim's personal information.

It's important to be aware of this type of attack and to be vigilant about not responding to unsolicited text messages or phone calls. Keep in mind that legitimate organizations will never ask you to give sensitive information over the phone or in a text message. If you are unsure, it's always best to contact the organization directly using the contact information you have on file or from their official website.

If you want to help reduce this type of risk for everyone, there is something you can do. Texting "7726" is a common way for individuals and organizations to report potential phishing and smishing threats to their mobile carriers. "7726" is the keypad representation of the letters "SPAM." Copying the message and forwarding it to 7726 will note it as a message to the carrier. They will take action to investigate and block it if necessary. This action can help to reduce the number of phishing and smishing messages that individuals and organizations receive.

It's important to note that while this can be an effective way to report and reduce the number of phishing and smishing messages, it is not a foolproof solution. It's always important to remain vigilant and take other steps to protect yourself and your organization against these threats.

Other steps that can be taken include:

• Educating employees and members of the organization on how to identify and report phishing and smishing attempts.
• Implementing security controls, such as email filtering and anti-phishing software, to detect and block phishing messages.
• Implementing multi-factor authentication for email and other sensitive systems to make it more difficult for attackers to gain access.
• Creating an incident response plan for dealing with phishing and smishing attacks.

By taking these steps, organizations and individuals can reduce their risk of falling victim to phishing and smishing attacks. Additionally, reporting potential threats to 7726, can help to reduce the overall number of messages being received.

What to do if you get spam text messages? - Rogers

I receive unsolicited text messages on my mobile phone (bell.ca)

Report a spam message | TELUS Support

https://www.freedommobile.ca/en-CA/protect-against-spam-texts

Signalement des SMS frauduleux | Vidéotron (videotron.com)

Report Unwanted Text Messages (att.com)