The Twilio and Cloudfare smishing attacks [view related post] provide a timely reminder of how sophisticated smishing attacks are and how they can affect businesses and their customers. But threat actors don’t just attack businesses– they also attack individual users, hoping to trick them into giving the threat actors credentials for access into personal and professional networks or to steal money.

We have pointed out the risk of smishing schemes in the past [view related posts]. Recently, the Federal Trade Commission issued a consumer alert on smishing because it “has seen a spike in reports from people getting text messages that look like they’re from well-known names” including retailers and package delivery companies. The Alert is worth a read and is a timely reminder to be wary of unknown texts.