TECH TOOLBELT

OCTOBER 2025

Smishing & Scams: Don’t Get Tricked This Fall

October is National Cybersecurity Awareness Month

October is a time for pumpkins, fall colors—and unfortunately, online scammers trying to trick you. At Curry Construction, we take safety seriously on the jobsite, and the same applies to your digital life. This month, we’re highlighting smishing—text message scams—and other common digital threats, so you can spot them before they cause damage.

What is Smishing?

Smishing is a type of scam delivered via text message. Cybercriminals use it to:

  • Steal personal information like passwords or Social Security Numbers
  • Trick you into clicking malicious links
  • Convince you to download harmful apps or make payments

These messages often look legitimate, appearing to come from banks, delivery services, or even coworkers…sometimes they even appear to come from yourself!

Red flags to watch for:

  • Urgent messages demanding immediate action (“Your account will be closed!”)
  • Unknown numbers or slightly off phone numbers
  • Poor spelling, grammar, or awkward phrasing
  • Suspicious links or attachments.

Common Digital Scams Targeting Everyday Users

Scammers don’t just use texts—they exploit emails, phone calls, and even social media:

  • Phishing emails: Fake emails claiming to be from your bank, a utility company or an online store.
  • Tech support scams: Calls or pop-ups claiming your device is infected and asking for remote access or payment.
  • Fake contests or giveaways: Messages promising prizes if you provide personal information
  • Impersonation scams: Fraudsters pretending to be friends, family, or coworkers asking for money or account info
  • Fake invoices: Scammers will also send documents that appear to be invoices or a statement of account in the mail with extremely fine print that states it is not an invoice.

What to do if you Click something suspicious

Even the most careful person can make a mistake. (The following steps do not apply to company-issued laptops, automated protocols are in place that will automatically disconnect and prevent access if malicious activity is detected.) If you think you clicked a scam link or shared personal info on your personal computer:

  • Disconnect your device from the Internet to prevent further access
  • Run a security scan using antivirus or built-in malware protection
  • Change your passwords for any account that might be affected
  • Monitor financial accounts for unusual charges or activity
  • Report the scan to your bank, email provider, or the Federal Trade Commission (FTC.gov).

qUICK bUILDER’S aNTI-sMISHING cHECKLIST

  • Never click links or download attachments from unknown numbers
  • Verify unexpected messages with the sender directly
  • Keep your phone and computer software up-to-date
  • Use strong, unique passwords for accounts
  • Report suspicious messages and activity immediately

Bottom line: Just like you stay alert on the jobsite, staying aware of digital threats keeps you and your personal information safe. Smishing and scams can look convincing, but knowing the signs and acting quickly can prevent costly mistakes this fall.

< BACK TO EMPLOYEE RESOURCES
Date Posted 2025-08/29
Posted By Curry Construction Communications Team
Category Employee Resources | Technology & Cybersecurity

Other Employee Resources