Digital scams are not limited to email, as they can be delivered in other ways. A bad actor may attempt to collect personal information or manipulate others’ actions by phishing via text message (SMS), also known as "smishing".
Cybercriminals using smishing tactics want to engage in real-time conversations with individuals, persuading them to either disclose sensitive information (such as account details) or take specific actions (such as making a purchase), or both. For instance, a cybercriminal might pretend to be someone you know, like your boss or a friend. Afterwards, they may send texts asking you to buy gift card codes. There are several clues that can help identify this type of social engineering. An example is provided below:
While most phishing occurs through email attempts, smishing involves real-time conversations with the scammer. They will often prey upon someone's good intentions and desire to help others achieve their goals. No university personnel would ever ask for account information or instruct you to purchase something on their behalf, especially through a text message. If you're unsure about a text message you’ve received, please contact the IT Service Desk at 508-215-5906 or email it@framingham.edu.