Beware EE Points Scam Messages Threatening Expiry To Steal Data

Photo of author

Written by: Thomas Orsolya

Published on:

Have you received an urgent EE text that your loyalty points are vanishing for good? This brazen scam is ravaging mobile users across the UK. But knowledge is power in the fight against fraud. Arm yourself with critical intel through this in-depth exposé to protect your hard-earned rewards.

For years you’ve built up EE points through loyal mobile usage and extra subscriptions. Points you one day hoped to redeem for the latest gadgets or a well-deserved treat. But this dream is shattered in an instant by a text announcing your points will expire without redemption. Panic sets in.

In a desperate bid to save your points, you click the provided link. Yet this phony “rescue” link leads only to deeper peril in a realm of fraudsters intent on stealing your identity and swindling your finances.

This is the alarming reality behind the recent onslaught of fake EE points texts infiltrating phones nationwide. But informed and vigilant customers can safeguard their points and everything else these scammers aim to steal. Get equipped with the must-know details on recognizing and stopping this scam through this extensively researched report. Don’t become another statistic.

EE Scam

Scam Overview

EE is the largest mobile network in the UK with over 30 million subscribers. The company incentivizes loyalty through an EE rewards program where customers accumulate points that can be redeemed for prizes like gift cards, tickets, media subscriptions and more.

Diligent users take care to build up their points balance over time through services like adding extra data, signing up for family plans, or frequent billing on time. The average EE customer actively accrues 650 points per year. With big rewards costing between 3,000 to 10,000 points, this takes dedicated accumulation for several years.

It’s easy to see how a message about one’s hard-earned points suddenly disappearing could spark real panic. And that’s exactly what scammers are preying on with fake SMS warnings about urgent point expiration.

Victims receive a text message that looks like it comes directly from the official EE company. It will have wording such as:

“EE: There are 4250 loyalty points in your account that will expire in 24 hours unless redeemed. Please click here immediately to avoid losing your points: [fraudulent link]”

The message is structured to produce fear over painstakingly collected points being erased. This motivates the recipient to hastily click the link without proper verification.

However, EE has confirmed they never send warnings about expiring points in text messages, because loyalty points do not actually expire if unredeemed. This reveals the message as a scam. Legitimate companies also avoid contacting customers by SMS for security reasons.

Sadly, the fraudulent text appears credible on first look. The EE branding and logo convinces users to trust the source. The personalized points total and threat of permanent loss triggers an urgent reaction.

These precise psychological tactics allow scammers to persuade smart individuals to click embedded links to fake websites. Once on the fraudulent sites, users are prompted to input personal data that exposes them to financial fraud and identity theft.

The scam leverages a combination of:

  • Trust in a known brand consumers already have relationships with
  • Customized points totals to add legitimacy
  • Fear of irreversible loss of hard-earned rewards
  • Urgency to act now or lose everything

This overwhelms critical thinking and skepticism. Victims compliantly provide the data scammers desire, with catastrophic consequences.

How the Scam Works

The EE points scam unfold through the following detailed stages:

Step 1: Victims Receive Fraudulent EE Points Text Message

The scam begins with the target receiving an unsolicited SMS message purporting to come from EE. Two examples read:

“EE: Sorry to bother you, there are 5340 points in your account that were not successfully used due to system failure. The points will expire in three working days. Please click the link below to redeem your prizes in time! https://htb.buzz/UKEE !EE wishes you a happy life!”

“Since you are a high-quality user of our company, we will give you some points as a gift. The points will expire in three working days. Please click on the link below to use your points to redeem prizes in time!”

The messages create a sense of urgency and make threats about points expiring. However, EE has confirmed they do not message customers in this way as points do not expire.

Step 2: Recipient Clicks Link to Fraudulent Website

If the victim clicks on the link contained in the text, they are redirected to a sophisticated fake website impersonating the real EE rewards portal. This fraudulent site utilizes EE’s logos, colors and branding to appear legitimate.

Any URL clearly not associated directly with EE exposes the site as fraudulent. But many users are initially fooled while panicking about points expiring.

Step 3: Scammers Obtain Personal and Financial Information

On the fake EE website, the user sees a form prompting them to enter their EE account credentials to log in, along with extensive personal information including name, address, birth date, etc.

The form also requests financial information such as payment card numbers, security codes, and online banking logins. The scammers capture all data entered on the phony site.

Step 4: Criminals Steal Identities and Money

With the sensitive personal and financial information obtained, the scammers now have the means to steal identities, empty bank accounts, and make unauthorized purchases. They may open fraudulent lines of credit using stolen data.

Meanwhile, the victim is left with no EE points added, despite giving up their private information. The criminals disappear with the data they have obtained through deception.

Step 5: No Points are Ever Credited

After entering all personal and financial details onto the fake site, the victim finds that no EE points have been credited to their real account. The entire site was a scam to phish for data while providing nothing in return.

By this time, the scammers already have the stolen data in their possession. Losses may only be discovered days or weeks later as financial fraud and identity theft take place.

What To Do If You Receive This Scam Text Message

If you receive a text supposedly from EE about urgent points expiration, take these immediate actions:

  • Do not click on any links within the suspicious text message. These lead to fraudulent sites.
  • Examine the sending number closely. EE would never message from an unknown mobile number.
  • Call EE customer service at 150 from your EE phone or 07953 966 250 from any other line to report the scam text.
  • Forward the scam text to 7726, which spells SPAM on a phone keypad. This reports it to your mobile provider.
  • If you clicked the link, urgently update passwords on any online accounts that may have been compromised by entering details into the fake website.
  • Contact your bank immediately if any financial information was given on the phony site so they can monitor for fraudulent transactions.
  • Consider signing up for a credit monitoring service to detect any potential identity theft resulting from data loss.

Frequently Asked Questions About the EE Points Scam

1. How can I determine if an EE points text message is a scam?

There are a few key signs that indicate an EE rewards SMS is fraudulent:

  • EE does not contact customers by text regarding points expiring or needing redemption, as they do not expire.
  • The text originates from an unknown mobile number, not an official EE source.
  • There is urgency to redeem points to avoid expiration. But EE points do not expire if unused.
  • The text has a link to click to redeem. Legitimate EE messages would never do this.

2. What happens if I click the link in one of these scam EE texts?

The link brings you to a sophisticated fake website impersonating the real EE rewards portal. You will be prompted to enter personal info like name, DOB, address etc. and financial details including payment info and banking credentials. Scammers capture all data input on the phony site.

3. How can scammers access my bank account if I enter that login information?

With your online banking username and password, criminals can sign into your real bank account and initiate transfers or add themselves as account holders for future access. Never provide bank login credentials to any third party.

4. Should I call the number in the EE points scam text?

No, never communicate with the sender of a scam text in any way. Calling them simply confirms your number is active and primes you for more scam attempts. Their number cannot be trusted or traced. Delete the text instead.

5. How can I report a fraudulent EE points text message?

Forward the scam SMS to 7726, which spells SPAM on a phone keypad. This reports it to your mobile provider. You can also report it to EE customer service so they are aware by calling 150 from an EE phone or 07953 966 250 from any other line.

6. How do I legitimately redeem expiring EE points?

Genuine expiring EE points are communicated only by email or mailed letter, never text. When real points near expiration, log into your official EE rewards account online or contact customer service at the published number to redeem.

7. How can I avoid becoming a victim of the EE points scam?

Never click on links in unexpected texts, regardless of company name used. Call known customer service lines if you have account concerns. Avoid entering info on websites you did not intentionally navigate to yourself. Staying vigilant against scams is key to protecting your hard-earned points and identity.

Key Takeaways to Avoid Falling Victim to This Scam

Here are the crucial facts to protect yourself from the EE points scam texts:

  • EE does not contact customers by SMS about points expiring or needing urgent redemption, as they do not expire.
  • The scam links bring you to realistic but completely fake EE websites to harvest your data.
  • No EE points are ever applied to your account despite providing personal information.
  • Once scammed, criminals can steal identities and money using the details provided. Quick reaction is important.
  • Never click on links in unsolicited texts, regardless of how legitimate they appear. Contact companies directly if concerned.

Staying alert to this scam can help UK mobile users safeguard their identities, finances, and hard-earned EE rewards points. Share this information to spread awareness and prevent victimization.

10 Rules to Avoid Online Scams

Here are 10 practical safety rules to help you avoid malware, online shopping scams, crypto scams, and other online fraud. Each tip includes a quick “if you already got hit” action.

  1. Stop and verify before you click, log in, download, or pay.

    warning sign

    Most scams win by creating urgency. Verify using a trusted method: type the website address yourself, use the official app, or call a known number (not the one in the message).

    If you already clicked: close the page, do not enter passwords, and run a malware scan.

  2. Keep your operating system, browser, and apps updated.

    updates guide

    Updates patch security holes used by malware and malicious ads. Turn on automatic updates where possible.

    If you saw a scary “update now” pop-up: close it and update only through your device settings or the official app store.

  3. Use layered protection: antivirus plus an ad blocker.

    shield guide

    Antivirus helps block malware. An ad blocker reduces scam redirects, phishing pages, and malvertising.

    If your browser is acting weird: remove unknown extensions, reset the browser, then run a full scan.

  4. Install apps, software, and extensions only from official sources.

    install guide

    Avoid cracked software, “keygens,” and random downloads. During installs, choose Custom/Advanced and decline bundled offers you do not recognize.

    If you already installed something suspicious: uninstall it, restart, and scan again.

  5. Treat links and attachments as untrusted by default.

    cursor sign

    Phishing often impersonates delivery services, banks, and popular brands. If it is unexpected, do not open attachments or log in through the message.

    If you entered credentials: change the password immediately and enable 2FA.

  6. Shop safely: research the store, then pay with protection.

    trojan horse

    Be cautious with brand-new stores, “closing sale” stories, and prices that make no sense. Prefer credit cards or PayPal for dispute options. Avoid wire transfers, gift cards, and crypto payments.

    If you already paid: contact your card issuer or PayPal quickly to dispute the transaction.

  7. Crypto rule: never pay a “fee” to withdraw or recover money.

    lock sign

    Common patterns include fake profits, then “tax,” “gas,” or “verification” fees. Another is a “recovery agent” who demands upfront crypto.

    If you already sent crypto: stop paying, save evidence (wallet addresses, TXIDs, chats), and report the scam to the platform used.

  8. Secure your accounts with unique passwords and 2FA (start with email).

    lock sign

    Use a password manager and unique passwords for every account. Enable 2FA using an authenticator app when possible.

    If you suspect an account takeover: change passwords, sign out of all devices, and review recent logins and recovery settings.

  9. Back up important files and keep one backup offline.

    backup sign

    Backups protect you from ransomware and device failure. Keep at least one backup on an external drive that is not always connected.

    If you suspect infection: do not connect backup drives until the system is clean.

  10. If you think you are a victim: stop losses, document evidence, and escalate fast.

    warning sign

    Move quickly. Speed matters for disputes, account recovery, and limiting damage.

    • Stop payments and contact: do not send more money or respond to the scammer.
    • Call your bank or card issuer: block transactions, replace the card if needed, and start a dispute or chargeback.
    • Secure your email first: change the email password, enable 2FA, and remove unfamiliar recovery options.
    • Secure other accounts: change passwords, enable 2FA, and log out of all sessions.
    • Scan your device: remove suspicious apps or extensions, then run a full malware scan.
    • Save evidence: screenshots, emails, order pages, tracking pages, wallet addresses, TXIDs, and chat logs.
    • Report it: to the payment provider, marketplace, social platform, exchange, or wallet service involved.

These rules are intentionally simple. Most online losses happen when decisions are rushed. Slow down, verify independently, and use payment methods and account controls that give you recourse.

Previous

Don’t Get Duped by Fake “Your System Has Been Hacked” Emails