Cybersecurity · February 2026
Smishing: the rise of text-message scams targeting employees
The scam that used to land in your inbox now arrives as a text, and people trust their phones more than their email.
"Smishing", phishing by text message, has exploded because it works. A text feels personal and urgent, and most people are far less guarded on their phone than at their desk.
What it looks like
- Fake "package delivery" or "toll payment" texts with a link
- Messages impersonating the boss asking for a quick favor or gift cards
- Bogus bank or account "alerts" pushing you to log in
- Texts that try to move you to a call or app where the real scam happens
How to protect your team
The rule is the same as for email: never act on an unexpected request, especially about money or logins, without verifying through a known, trusted channel. Remind staff that a text from "the director" is just as easy to fake as an email, and keep MFA on so a slip does not become a breach.
Get started
Questions about your own setup?
A free assessment turns general guidance into specific next steps for your organization. No pressure, no obligation.