If it was not genuine and you texted YES what could happen? 

Seems that as tech gets twice as better, security get four times worse

     >If it was not genuine and you texted YES what could happen? <

I've donated all my credit to Trump's wall?

     >Seems that as tech gets twice as better, security get four times worse<

Oh yeah ... we all seem to be really suspicious of anything that is unsolicited.

Rickles:

 

     >If it was not genuine and you texted YES what could happen? <

 

I've donated all my credit to Trump's wall?

 

     >Seems that as tech gets twice as better, security get four times worse<

 

Oh yeah ... we all seem to be really suspicious of anything that is unsolicited.

 

 

 

 

 

And all the hacking and so forth, and two bitcoin companies in the news. But for your issue, while we know that a spam email could trick someone into access, what could your potential fake text do? I cant think of anything, but hard to say

tdgeek:

Rickles:

     >If it was not genuine and you texted YES what could happen? <

I've donated all my credit to Trump's wall?

     >Seems that as tech gets twice as better, security get four times worse<

Oh yeah ... we all seem to be really suspicious of anything that is unsolicited.

 

 

And all the hacking and so forth, and two bitcoin companies in the news. But for your issue, while we know that a spam email could trick someone into access, what could your potential fake text do? I cant think of anything, but hard to say

Yes the offer is from VodafoneNZ

John

Aredwood:

tdgeek:

 

Rickles:

 

 

 

     >If it was not genuine and you texted YES what could happen? <

 

 

 

I've donated all my credit to Trump's wall?

 

 

 

     >Seems that as tech gets twice as better, security get four times worse<

 

 

 

Oh yeah ... we all seem to be really suspicious of anything that is unsolicited.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

And all the hacking and so forth, and two bitcoin companies in the news. But for your issue, while we know that a spam email could trick someone into access, what could your potential fake text do? I cant think of anything, but hard to say

 

It would confirm to whoever sent it, that the number is live, and is used by a human. (instead of an IOT device or a modem). And that the human might be a good potential mark for future scams.

If it is possible to spoof the ”from” number, replying yes could sign you up to almost anything.

And Vodafone have their SIMs hard coded, so they can txt you with offers that say they are from ”Vodafone” instead of a random number. So surely Vodafone would use that system for any official offers or promotions they are running.

Unless a 3rd party is paying Vodafone to apply credit to your account. But why would someone do that?

I, like many, dont know that Vodafone uses hard coded sims, so while what you say is correct, many wont know that, and many wont know if they might be "sign you up to almost anything."

The offers come from Shortcodes so customers can reply for different offers, If they came from ' Vodafone ' they could not reply

I use to setup up all the Shortcodes on the VSMSC using vi

John

@Linux … thanks John, but I think that what the others are saying is how does one determine the origin of the 'shortcode'?

@Aredwood You are not correct VodafoneNZ does not hardcode Shortcodes into the SIM cards for SMS offers like above

The SIM's have some Shortcodes in the STK (SIM toolkit) but these are used for different reasons like Postpay / Prepay shortcodes for getting balances

The Shortcodes are different for different offers

John

Linux:

 

@Aredwood You are not correct VodafoneNZ does not hardcode Shortcodes into the SIM cards for SMS offers like above

 

You'd think the SMS would have a (shortened) URL to verify the offer is legit (where the URL contains vodafone.co.nz and mentions the number that the SMS is sent from). I just checked the offers I received from 2 degrees (short code 288), and they don't have a URL on them either. I don't blame the OP for trying to verify the offer is valid. Texting yes to a premium SMS could sign them up to many dollars in rogue charges.

Also you have no idea with shortcodes what it will cost you, so it could be a really expensive one and people get tricked into replying YES to give them some money.

I as a general rule will not send to shortcodes. Sucks with doctors and dentists that expect you to reply at your cost to confirm appointments but I just ring them since that comes out of the crap load of minutes I am forced to buy with my mobile internet connection.