The Australian Securities and Investments Commission (ASIC) has issued an urgent warning about scammers impersonating the regulator through fraudulent text messages, aiming to steal personal and financial information from unsuspecting victims.

ASIC Warns of Text Message Scams Using Fraudulent Method

The scammers are using "alpha tags" - alphanumeric sender identification labels that display "ASIC" instead of a phone number as the message sender, creating an illusion of legitimacy that has already targeted numerous Australians.

"ASIC does not communicate using text messages for any official business," the regulator emphasized in its warning. This includes requests for personal details, business name renewals, confirmation of misconduct reports, investment assistance, or fee payments.

The deceptive practice comes amid a rising wave of government impersonation scams that have become increasingly sophisticated in recent months. Alpha tags, while legitimate tools for organizations to identify themselves in text communications, provide scammers with a powerful method to build false trust with potential victims.

When people see “ASIC” as the sender rather than an unknown number, they're more likely to engage with the message. However, this false sense of security is exactly what scammers are banking on.

Each week ASIC blocks approximately 130 suspicious websites, having removed over 10,000 in total. Scammers are therefore trying other tactics, directly impersonating trusted public institutions.

How to Protect Yourself?

The regulator advises Australians to be vigilant and follow several protective measures. These include independently verifying any message sender before responding, avoiding clicking on links in unsolicited messages, enabling multi-factor authentication on accounts, and staying informed about emerging scam tactics.

For those who believe they've been targeted, ASIC recommends immediate action: stop all communication with the scammer, contact financial institutions to halt any transactions, and report the incident to both the impersonated organization and Scamwatch.

The Australian Communications and Media Authority is developing an SMS Sender ID Register to help protect alpha tags from impersonation, though this solution isn't expected to launch until December 15, 2025.

Until then, ASIC urges Australians to remember the "stop, check, protect" approach when receiving suspicious messages - don't engage, verify independently, and take protective action if something feels wrong.

Recovery Scam

This marks yet another instance of individuals attempting to impersonate ASIC, following a mid-March warning from the Australian regulator. At that time, ASIC cautioned that fraudsters posing as agency officials were contacting potential victims and requesting “to provide a payment to enable funds or assets to be released.”

The alert was issued after reports surfaced of consumers receiving emails and phone calls from scammers pretending to be regulatory officials. ASIC classified these schemes as “recovery scams.”

“ASIC will never ask for a payment in any currency to enable funds or assets to be released,” the regulator added. “ASIC will also not require or accept payments in digital or crypto assets (including stablecoins), whether that is to or from your crypto asset wallet or to an account at a digital asset exchange.”

While ASIC has only recently addressed this wave of impersonation attempts, the Cyprus Securities and Exchange Commission (CySEC) has been tackling a similar problem for years.

CySEC has repeatedly warned the public about individuals falsely claiming to represent its staff. In many cases, these impostors target vulnerable consumers on platforms like Trustpilot, offering to recover funds from defunct services in exchange for upfront payments.