According to the Press Republican, the New York State Department of Motor Vehicles warned New Yorkers last Friday of ongoing SMS phishing (aka smishing) attack.
These illegitimate text messages ask recipients to update their driver license contact information, a press release said, with the messages linking to a phony DMV website.
Below is an example of the text New Yorkers received:
Source: Press Republican
Anyone in the tri-state area who received a similar text message should absolutely NOT provide any personal information and should delete the text message immediately.
The NYS Office of Information Technology Services recommends taking the following precautions:
- Exercise caution with all communications you receive, including those that appear to be from a trusted entity. Inspect the sender’s information to confirm the message was generated from a legitimate source.
- Keep an eye out for telltale signs of phishing like poor spelling or grammar, the use of threats and the URL not matching that of the legitimate site.
- Don't click on links embedded in an unsolicited message from an unverified source.
- Don't send your personal information via text. Legitimate businesses will not ask users to send sensitive personal information through text message.
- DON’T post sensitive information online. The less information you post, the less data you make available to a cybercriminal for use in developing a potential attack or scam.
It's important to continually educate your users. New-school security awareness training can ensure your users can spot and report any suspicious activity.
The Press Republican has the full story.
