The NJCCIC recently observed a text message phishing campaign in which threat actors attempted to steal users’ banking credentials and payment card details. Information about this campaign can be found in the video embedded in the NJCCIC post.
Recommendations

• Navigate to online accounts directly by manually typing the official URL into their
  browser or log into accounts on the company’s mobile app.
• Refrain from clicking links found in text messages sent from unverified sources.
• Avoid providing sensitive information in response to unsolicited text messages or calling
  the sender’s phone number.
• Forward SMiShing messages to 7726 (SPAM) and report the messages to mobile
  carriers.