FBI Warning: Delete These Texts on Your iPhone or Android Phone Immediately

The FBI is urging Americans to delete suspicious text messages immediately as a new wave of malicious SMS scams, known as “smishing,” sweeps across the country. Cybercriminals have registered over 10,000 domains to fuel these attacks, which aim to steal personal and financial information from unsuspecting iPhone and Android users.

1 43 - fbi warning: delete these texts on your iphone or android phone immediately

The Growing Threat of Smishing Scams

According to a report from Palo Alto Networks’ Unit 42, these smishing texts often impersonate toll payment services or delivery companies, luring victims into clicking malicious links. The messages typically claim the recipient has an unpaid bill or missed delivery, urging them to act quickly to avoid penalties.

“These scams are designed to entice users to reveal personal and financial information, including credit or debit card details,” the report states.

The FBI warns that clicking these links could lead to identity theft, financial loss, and unauthorized access to sensitive accounts.

How the Scams Work

The smishing texts follow a familiar pattern:

A message claims you owe money for a toll or missed delivery.
A link directs you to a fake payment portal.
Instructions may ask you to reply to the text or copy the link into a browser.

Many of these fraudulent domains use the Chinese “.XIN” top-level domain (TLD), such as:

dhl.com-new[.]xin
fedex.com-fedexl[.]xin
usps.com-tracking-helpsomg[.]xin

These domains are crafted to appear legitimate, but experts warn that no U.S.-based service would redirect users to a Chinese domain.

2 42 - fbi warning: delete these texts on your iphone or android phone immediately

Cities Most Affected

McAfee reports a significant spike in these scams, with certain cities being heavily targeted. The top 15 most affected cities include:

Dallas, Texas
Atlanta, Georgia
Los Angeles, California
Chicago, Illinois
Orlando, Florida

Other cities like Houston, Denver, and San Diego have also seen a surge in smishing attempts.

A Warning from State Officials

Louisiana Attorney General Liz Murrill recently issued a public warning after receiving a scam text herself.

“I received this text as well. It is a scam. If you ever receive a text that looks suspicious, be sure to never click on it,” she said.

In Detroit, local news outlets reported thousands of residents receiving similar messages. One woman shared her experience of being tricked into entering her debit card information, only to receive a pop-up claiming the payment was denied.

“That’s the trick,” experts explain. “Scammers want you to keep trying different cards so they can steal your details.”

How to Protect Yourself

The FBI and Federal Trade Commission (FTC) offer the following advice to avoid falling victim to smishing scams:

Do not click on links in unexpected texts.
Verify the message by contacting the company directly using a trusted phone number or website.
Report and delete suspicious texts. Use your phone’s “report junk” feature or forward the message to 7726 (SPAM).
Monitor your accounts for unauthorized charges if you’ve clicked a link or shared information.
File a complaint with the FBI’s Internet Crime Complaint Center (IC3) at www.ic3.gov.

3 34 - fbi warning: delete these texts on your iphone or android phone immediately

Why Mobile Devices Are a Prime Target

Zimperium, a mobile security firm, warns that cybercriminals are increasingly adopting a “mobile-first attack strategy.” Smaller screens and the immediacy of text messages make users more likely to click on malicious links compared to email scams.

As smishing scams continue to spread, staying informed and cautious is your best defense. If you receive a suspicious text, remember: when in doubt, delete it.

For more cybersecurity tips and updates, visit the FBI’s official website or follow trusted sources like the FTC and McAfee.