Hackers very often use public bodies as hooks to try to deceive users, defraud them and get their data. It is easy to come across phishing, or smishing, that pretend to be banks or the Treasury and that the only thing they want is to get hold of our data. The same is the case with this new campaign that replaces Social Security and that, if we fall for it, it can end up being very expensive.
He smishing, a combination of the words “SMS” and “phishing”, is a technique widely used by hackers to deceive users and get hold of their personal data. To do this, they send mass messages to telephone numbers posing as a company or organization, trying to make the user believe what they say and fall for the scam to steal confidential information or get them to take a specific action, such as providing them with personal data or numbers. of bank cards.
These SMS may seem more or less legitimate, depending on how they have been written. And they almost always include links to web pages created and controlled by pirates, which imitate the original websites so as not to arouse suspicion.
Taking advantage of this technique, hackers They are supplanting Social Security sending text messages in which the user is told that they have to update the health card, and that, if they want to maintain their services, enter a link to continue with the process.
Once inside, we find a web page, more or less careful, in which the user will be asked to enter their last name, first name, date of birth and email. By clicking on submit, this data will become part of the hackers. And they can use them to carry out other more complex attacks, such as identity theft.
What to do if you fall for this scam
If we have fallen for this scam, and have provided our data to hackers, the first thing we should do is collect all possible evidence (the SMS, the web, date, time, etc) and file a complaint with the State Security Forces and Bodies. In this way, if they sell our data, or use it for other illegal activities, there will be evidence that we have been victims of this scam.
In addition, in the coming months we must search the Internet to see if there is data or private information about us. It is also very easy for us to start receiving a lot more personalized phishing, since the hackers now have our data. This can come in the form of an email and even in the form of a phone call. Therefore, we must take extreme precautions and always be wary.
If we receive an SMS from the bank, the Treasury, or the Social Security, it is always best to call the body in question to see if it is a legitimate message or a possible scam and thus avoid falling for the scam of hackers.
Of course, if we have downloaded something through one of these links, it is vital to analyze our security with a good antivirus.
