“Someone has uploaded your photos” – beware of new SMS scam

An SMS with a link? I wonder who it’s from? Good question. If you don’t know the sender, it’s better not to type links in short messages. Malware can be hidden behind them.

In recent months, smartphone users have increasingly received text messages with links to supposed package tracking. Now a new SMS scam has been added, warning of private photo albums on the Internet. According to consumer protection portal “Watchlist Internet,” recipients receive alarmist short messages claiming that someone has uploaded an album of their own photos to the Internet.

Of course, this is not true, but it should tempt to careless actions. And so the same applies here: Don’t click on the link in the SMS. This does not lead to an album with your own photos. It opens a page in warning red, with which part two of the perfidious attack plan begins.

SMS scam with uploaded photos
This is what the SMS look like, with which hackers want to get your money Photo: atechbook

The page claims that the smartphone is infected with the banking Trojan “FluBot” and that you need to install an update. FluBot really does exist, but anyone who taps on “Install security update” at this point and then also agrees to the installation of an app from an unknown source is actually getting malware on the device.

FluBot is spyware that can steal login details and passwords from banking apps. The malware can create a real-looking image of an actual banking app, tricking users into entering their data.

More information about FluBot malware is available here: Malware hides behind SMS from unknown numbers

How to protect yourself from photo SMS scams

atechbook empfiehlt, SMS von fremden Absendern, die zudem noch Links auf ominöse Seiten wie “wholesaledetroitlionsjerseys.com” oder “rentindiarent.in” enthalten, einfach zu ignorieren. Falls Sie einen solchen Link doch einmal aus Versehen geöffnet haben, gibt das neuseeländische Computer-Notfallteam CERT NZ jedoch Entwarnung. FluBot wird erst gefährlich, wenn man tatsächlich etwas installiert oder Zugriffsberechtigungen erteilt hat. iPhone-Nutzer sind zudem nicht von der Spyware betroffen, da iOS nicht die Installation von Apps aus unbekannten Sources erlaubt.


  • Watchlist Internet

With material from dpa