Scammers use phishing SMS's to trick you into providing login information. People tend to trust SMS more than email, but links contained in an SMS can be equally dangerous and may take you to a malicious website or download malware.
If you’ve received an SMS claiming to be from Zip that asks you to click a link, please exercise extreme caution.
Things to look out for:
- Do you know the sender, and do you usually receive SMS messages from the sender?
- Does the message seem generic or contains errors and grammatical mistakes?
- Always inspect links before opening them to check if the real destination domain name matches with the expected sender organization, in this case, zip.co.
- SMS Phishing, or ‘Smishing’ messages, play on your emotions by creating a sense of urgency, followed by a link to click. For example, ‘Your account is temporarily frozen, please login immediately to lift the restriction’.
If you think you may have clicked a link in a phishing SMS, please reach out to our Customer Experience team via this form for assistance. We also recommend that you:
- Block the mobile phone number the message was received from
- Using a different device, reset the password of your Zip account
Other security tips
- Always use the official Zip app, Chrome Extension, or zip.co website to access your Zip account.
- Stay on top of the latest scams by visiting the Australian Government’s Scamwatch website.