Fake O2 Texts Phish for Victim Credentials

A new text-based scam is making the rounds in the UK. Potential victims of the scam receive fake text messages that pose as official communication from British telecom company O2, asking users to update billing details.

The fake text message claims that your payment details are "incorrect" and urges the victim to update them by tapping on a malicious link contained in the text. The full text of the scam reads:

"O2: Your billing details are incorrect, please update them by going to your O2 account on your desktop or mobile phone."

This is followed by the fake user account link which, of course, we are not going to publish here but will simply mention the domain used ends in .co and not in .co.uk, like the domain that the legitimate O2 website uses.

In response to the spreading phishing scam, O2 set up a dedicated page on their website to warn people against the fraudulent texts and raise awareness of the issue. This sort of low-profile, easily disseminated scam is not the first of its kind. In the middle of summer 2020 a similar fake text was being distributed, claiming that a user payment failed to go through and an update of the user's payment method was needed, accompanied by a similar phishing domain, made to scrape the login credentials and any other info scared victims would willingly provide.

How to Stay Safe from Phishing and Scams?

Phishing is becoming an increasingly common method of scamming people out of their credentials, personal information or even directly their money. Clever social engineering combined with the fraudulent use of popular brand names can do a lot for fraudsters. However, there are a few general rules of thumb that can help you stay safe.

Always check any suspicious text or email thoroughly for any grammar or spelling mistakes. Sometimes bad actors will register a fake domain that just replaces a letter with a number - make sure you don't overlook such fakes. Double-check all URLs and links and never follow any links contained in a message or email that you feel unsure about. Make sure to check the official domain name of any company or organization that allegedly sends you any messages and cross-reference them with the domains used in the message.

Never provide your credentials or personal information in any forms that you open from suspicious messages or emails. Hackers can set up convincing fakes of legitimate login portals and steal your credentials through them.

By Zaib
September 25, 2020
Phishing
English
September 25, 2020
Phishing

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Microsoft Warns State-Backed Threat Actors Are Using AI in...

4 days ago

Trojan Al11 Malware Detection & Removal - An Essential...

11 months ago

Pinaview is a Fully-Featured Adware App

10 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

7 months ago

What is Lucky Ransomware?

7 months ago

Related Posts

Computer Security

TikTok Pro Is a Fake App Designed to Steal Passwords

In the midst of the ongoing TikTok drama in the USA, with President Trump trying to take down the Chinese-owned social network video app from the US app stores, bad actors are making the best out of the heightened... Read more

September 24, 2020
Tips

Hackers Can Use Google Translate to Hide Fake Login

Cybercriminals have developed quite a few effective tools and techniques to get their hands on data that does not belong to them over the years. One of the most effective and preferred methods is doubtlessly the... Read more

April 23, 2020
Phishing

Watch Out for Fake Emails Offering £1,000 Gift Cards From Asda

Asda Stores Limited, a retail supermarket chain based in Leeds in the United Kingdom, issued a warning to its customers in early September 2020. The store chain warned its customers to be aware that there is an... Read more

September 17, 2020
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2024 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.