You’re busy with your day when your phone buzzes.

FedEx: Your package delivery failed. Click here to reschedule.”

Toll Notice: You have an unpaid balance. Pay immediately to avoid penalties.”

Bank Alert: Unusual activity detected. Verify your account now.”

These messages feel urgent. They look real. But they’re not. They’re scams, and part of a growing wave of smishing attacks.

At Peoples Bank & Trust, we’re committed to protecting our customers and our community. That’s why we’re breaking down what smishing is, how to spot it, and what to do if one of these suspicious texts shows up on your phone.

What Is Smishing?

Smishing is a mashup of “SMS” (text messaging) and “phishing” (tricking people into giving away personal information).

It’s a type of cybercrime where fraudsters send scam text messages that appear to come from legitimate companies, like FedEx, toll agencies, banks, or even the IRS. These texts are designed to:

  • Trick you into clicking on a malicious link
  • Get you to share sensitive information (like your bank login or Social Security number)
  • Install malware on your device

Unlike spam texts that are just annoying, smishing can lead to identity theft, drained bank accounts, and stolen personal data.

Common Smishing Scenarios

Fraudsters use all kinds of disguises, but here are the scams we see most often:

1. Fake FedEx or UPS Delivery Texts

  • “Your package delivery failed. Reschedule here.”
  • “We couldn’t deliver your order. Pay $1.50 to confirm shipping.”

    Links lead to fake websites where scammers collect payment information or personal details.

2. Unpaid Toll or Ticket Scams

  • “Missouri Tolling: You have an unpaid balance of $11.67. Pay now to avoid penalties.”

    These are designed to scare drivers into clicking quickly. Many communities don’t even use text alerts for tolls; that’s a huge red flag.

3. IRS or Government Impersonation

  • “Final Notice: You owe back taxes. Pay now or face legal action.”

    The IRS doesn’t contact taxpayers by text. These messages are pure intimidation tactics.

4. Bank or Credit Card Alerts

  • “Unusual activity detected on your account. Verify now.”

    These texts often contain fake links that mimic your bank’s login page. Once you enter your username and password, scammers have access.

5. Fake Verification Codes

This one is tricky. A scammer may already be trying to log in to one of your accounts. They’ll trigger a real verification code to be texted to you, then call or text pretending to be your bank and ask you to read the code back.

Remember: Never share one-time codes with anyone. Not even your bank will ask for these.

Why Smishing Works

Smishing preys on three human instincts:

  • Urgency: “Act now or else!” Scammers create panic to stop you from thinking it through.
  • Trust: They use familiar names like FedEx, banks, or government agencies.
  • Curiosity: Many people click “just to see” what it is.

It doesn’t matter how tech-savvy you are; in the middle of a busy day, it’s easy to let your guard down.

How to Spot a Scam Text Message

Here are the most common red flags:

  • Misspellings, poor grammar, or awkward phrasing
  • Strange or shortened web addresses (ex: fedex-track.delivery123.com instead of fedex.com)
  • Generic greetings like “Dear Customer” instead of your name
  • Requests for sensitive information (PIN, passwords, or account numbers)
  • Too-good-to-be-true offers, prizes, or refunds

When in doubt, don’t click.

What to Do If You Get a Suspicious Text

If you receive a text that seems off, follow these steps:

  1. Don’t click the link. Even one tap can expose you to risk.
  2. Don’t reply. Even replying “STOP” can confirm your number is active.
  3. Verify separately. Check your FedEx app, toll account, or bank’s website directly.
  4. Delete the message. Out of sight, out of mind.
  5. Report smishing.
    1. Forward the message to 7726 (SPAM).
  6. Report to the FTC at reportfraud.ftc.gov.

What If You Already Clicked or Shared Info?

Don’t panic. Act quickly:

  • Run a security scan on your phone for malware.
  • Change your passwords, especially for online banking and email.
  • Contact your bank immediately so they can secure your accounts.
  • Monitor account activity for suspicious charges.

Need to lock your PB&T card? Contact us today for help.

Contact PB&T Today

How PB&T Protects Customers

At Peoples Bank & Trust, your security comes first. Here’s what we do (and don’t do):

  • We monitor accounts for unusual activity.
  • We offer tools like two-factor authentication and account alerts.
  • We will never ask for your PIN, password, or one-time passcodes by text.
  • We will never send you links asking for sensitive information.
  • If you’re ever in doubt, call your local branch directly. We’d rather you double-check than risk falling for a scam.

Learn more about our accounts and services by clicking the button below.

PB&T Checking Accounts

Stay Scam-Savvy

Smishing isn’t going away anytime soon. But with a little awareness, you can avoid falling into the trap.

  • Slow down before you click.
  • Verify through official websites or apps.
  • When in doubt, delete and call us directly.

By protecting yourself, you’re also protecting your family, your finances, and your community.

Don't Let Smishing Catch You Off Guard

Text messages are quick and convenient, but so are scammers. Stay alert, know the warning signs, and remember: if a text looks suspicious, it probably is.

And if you’re ever unsure, Peoples Bank & Trust is here to help. Call or stop by your local branch, and let’s make sure your money stays safe.

Stop by a PB&T Branch Near You

Peoples Bank & Trust Co.
Member FDIC, Equal Housing Lender
NMLS #407724