Cybercriminals have shifted their SMS phishing campaigns toward exploiting incentives and time-sensitive events to increase the likelihood of victim engagement. Instead of generic fraudulent links, recent campaigns impersonate loyalty program updates, tax notifications, and messages from popular retailers offering promotional rewards or transactional alerts. These smishing texts often contain deceptively branded URLs and urgent language, prompting recipients to click and enter personal information, account credentials, or payment details. By leveraging familiar brands and real-world triggers (such as tax deadlines or limited-time offers), attackers maximize social engineering effectiveness against mobile users who are conditioned to trust SMS notifications from legitimate services.

The evolution of these tactics increases the risk of credential compromise, identity theft, and financial fraud, particularly as victims may use the same login details across multiple services. Security experts recommend increased skepticism of unsolicited SMS messages, verification of sender information through official channels, and the use of multi-factor authentication to limit the impact of credential exposure. Broader defensive measures include carrier-level filtering of known malicious domains and public awareness initiatives that educate users on common smishing indicators, helping reduce the overall success rate of these increasingly sophisticated phishing operations.

‍

Source: https://krebsonsecurity.com/2025/12/sms-phishers-pivot-to-points-taxes-fake-retailers/