Smishing is a combination of the words "SMS" and "phishing" and refers to a fraudulent technique in which attackers attempt to obtain sensitive information from people via text messages. It is a form of social engineering that exploits the trustworthiness of victims. In smishing, attackers send fake text messages that often pretend to be communications from trusted entities such as banks, mobile operators, commercial companies, or government institutions. These messages often contain urgent or enticing calls to get victims to take immediate action.

Attackers aim to obtain sensitive information such as login data, passwords, bank details, or personal identification numbers (PINs). They can link to fake websites where victims are asked to enter their information, or requests to reply with sensitive data directly via SMS. You can find out what such attacks look like and how to protect yopurself against it on our Cybersecurity page.