What is smishing (SMS phishing)?
Scammers are increasingly sending text messages which contain a link to a fake website. The messages look like they come from a trusted source such as a bank, the government, a telecom operator, itsme or Card Stop.
The message is written in a direct and urgent tone, pressuring you to click the link.
Clicking the link will take you to a fake website that looks just like the real one. The scammers will then ask you to enter personal information or your bank details (your card number and the codes you generate with your card reader). They can then use your bank details to steal your money.
Don’t get caught out by scammers! We’ll never text you a link and ask you to open it to enter your card reader codes.
How the scam works
You get a text message containing a fake link from scammers pretending to be us. The link takes you to a fake website that looks like ours, where the scammers try to trick you into entering your:
- debit card number
- online banking login codes that you generate with your card reader
- codes for signing and authorising transactions that you generate with your card reader
Once the criminals have your card number and these two codes, they can install Mobile in your name on their own device and steal money from your account.
A few tips on protecting yourself against smishing
- Don't blindly believe every text message you receive
Fraudsters can easily fake the sender’s name. If you’re in any doubt, forward suspicious text messages to secure4u@KBC.be.
- Never enter personal information or bank details on a website you’ve been sent to after clicking a link.
- Keep the codes you generate with your card reader secret, just like your debit card PIN
They are the key that unlocks your funds, and they are strictly personal to you. KBC will never ask you for these details by e-mail, text message or over the phone.