Recognise a fake bank text or email
Smishing texts and phishing emails imitate your bank to harvest logins. The tells are consistent once you know them.
- Be suspicious of any message creating urgency — ’account locked’, ’verify now’, ’suspicious login’.
- Never tap a link in a bank text or email — open the official app or type the web address yourself.
- Check for a sense-of-panic tone, odd sender addresses and slightly-wrong web addresses.
- Remember your bank won’t ask you to confirm a password or one-time code via a link.
- Forward suspicious texts to 7726 (spells SPAM) and delete them.
- If unsure whether a message is real, call your bank on the number on your card.
Still stuck after those?
You’ve done the right thing by trying. Send whedo.it a quick note — what you tried, what you saw — and a senior pair of eyes will be on it the same business day.