Smishing Attempt - Real Example

This is a real example of a recent smishing txt message sent to Detective Superintendent Neil Jones’ personal phone on the 30th May at 8.12 pm.

Smishing attempts are a common method of attack, often posing as well-known organisations that the target is likely to have an account with. In this case, the fraudsters pretend to be PayPal, claiming there is an issue with an existing account. Note the sense of urgency in the message, this is a common tactic and was used in a recent extortion attempt which you can view here.

It is important that if you receive a text message asking you to click, you stop and check the URL before you click or give away any sensitive data. As you can see in this attempt, the second part of the URL is, which is very unusual for a company like PayPal. Some attempts are more convincing than others though, like subtle changes to a URL to make it look authentic such as

The Cyber Resilience Centre always recommends that you research the full URL using This website will verify when the domain was registered and who it belongs too. You can also contact the account provider directly to check whether the message or email is real.

In this case, the WHO.IS search on shows it was created at 5.21 pm on Saturday 30th May, just 3 hours before the smishing text was sent. Therefore, the domain was likely registered specifically for the smishing campaign. The registrar details suggest the fraudsters are located in the Netherlands.

For more information and advice on phishing and smishing, visit the National Cyber Security Centre’s website here.

The contents of this website are provided for general information only and are not intended to replace specific professional advice relevant to your situation. The intention of Cyber Resilience Centre for Greater Manchester (CRCGM) is to encourage cyber resilience by raising issues and disseminating information on the experiences and initiatives of others.  Articles on the website cannot by their nature be comprehensive and may not reflect most recent legislation, practice, or application to your circumstances. CRCGM provides affordable services and Trusted Partners if you need specific support. For specific questions please contact us.

CRCGM does not accept any responsibility for any loss which may arise from reliance on information or materials published on this website. CRCGM is not responsible for the content of external internet sites that link to this site or which are linked from it.


Cyber Resilience Centre GM, Manchester Technology Centre, Oxford Rd, Manchester, M1 7ED

0161 706 0940

Registered in England & Wales No.12309263.



  • LinkedIn
  • Twitter
Greater Manchester Logo Light.png

© 2021 - The Cyber Resilience Centre for Greater Manchester