We live by our phones. From appointment reminders to package delivery updates, text messages feel quick, convenient, and trustworthy. Unfortunately, scammers know this, and they’ve turned text messaging into one of their favorite attack methods. It’s called smishing (SMS + phishing), and it’s on the rise.

At Members 1st, we want you to recognize smishing before it puts your money or identity at risk. Let’s look at examples of smishing attempts, how they worked, and what the victims could have done differently.

What Is Smishing?

Smishing is a type of fraud where scammers send text messages that look like they come from a trusted source, E.G. your credit union, the post office, a delivery company, even a government agency. The message usually:

• Contains a link to click, or
• Urges you to call a number immediately, or
• Requests sensitive information like account numbers or passwords.

The goal? To steal your login credentials, financial details, or personal information.

Smishing Examples

1. The Package That Never Came

The scam:
Jordan received a text that read: “USPS: We attempted delivery of your package. Please confirm your details to reschedule [link].”

Excited to finally get an order he’d been waiting on, Jordan clicked the link and entered his name, address, and credit card number “for the redelivery fee.”

What happened:
The site looked exactly like the USPS website, but it was a fake. Within hours, fraudulent charges appeared on his credit card.

How it could have been avoided:

• Real carriers like USPS, UPS, or FedEx never charge a fee via text for redelivery.
• Jordan could have gone directly to the carrier’s official website or app to track his shipment instead of clicking the link.

2. “Bank Alert: Suspicious Login”

The scam:
Maria got a text saying: “Members 1st Credit Union: We’ve detected unusual login activity. Click here to secure your account.”

She panicked and clicked the link. The page asked for her online banking username, password, and even her Social Security number “for verification.”

What happened:
Maria unknowingly gave the scammer her credentials. Minutes later, they tried to log in to her real account. Luckily, she had two-factor authentication enabled, which stopped the fraud attempt.

How it could have been avoided:

• Financial institutions don’t ask you to confirm personal details by text.
• Maria should have called the official Members 1st number on our website to check her account.

3. Fake Job Offer with a Check

The scam:
Derrick received a text: “We found your resume online. You’ve been selected for a work-from-home opportunity. Please reply for more details.”

The “employer” sent him a check to cover office supplies, instructing him to deposit it and send back part of the money.

What happened:
The check bounced, but not before Derrick wired money out. He lost $2,000.

How it could have been avoided:

• No legitimate employer asks new hires to send money back.
• Derrick could have researched the company’s official website and job postings before engaging.

Red Flags in Smishing Texts

Watch for these signs a text is fraudulent:

• Urgency or fear: “Your account will be closed in 24 hours!”
• Unfamiliar links: Often shortened (bit.ly, tinyurl) or slightly misspelled.
• Requests for personal info: Passwords, PINs, account numbers, or Social Security numbers.
• Too good to be true offers: Free gift cards, prizes, or jobs.
• Sender’s number looks odd: Random digits instead of an official short code or contact.

How to Beat Smishing

1. Pause before you tap. Never click links in unsolicited texts.
2. Verify through official channels. Go directly to the company’s website, app, or phone number, not the one in the text.
3. Enable account alerts. Get real-time notifications about your Members 1st accounts through our secure digital banking.
4. Use multi-factor authentication (MFA). Even if a scammer gets your login, MFA can stop them.
5. Report suspicious texts. Forward smishing attempts to 7726 (SPAM). You can also report them to the FTC at reportfraud.ftc.gov.
6. Stay updated. Share scam warnings with family and friends, especially older adults who may be more vulnerable.

Smishing is sneaky because it targets us in our most personal space - our phones. By recognizing the warning signs, verifying before you act, and staying cautious, you can protect yourself and your finances.

At Members 1st, your security is our priority. If you ever receive a suspicious text claiming to be from us, don’t respond! Call us directly at the number on our website.