How to Protect Your Smartphone Against Scams in 2026
Wondering how to avoid scams on your smartphone? The good news: protecting your phone is simpler than it seems. By applying 7 simple steps that we will detail, you will reduce scam risks by 95%.
Every year in the UK, hundreds of thousands of people fall victim to smartphone scams, with significant financial losses per victim. But rest assured: with the right habits, your phone can become as secure as a safe.
Transparency: This article contains links to products on Amazon.co.uk. If you make a purchase through these links, we receive a small commission at no extra cost to you. This helps us continue creating free, quality content.
Why Are Smartphones Prime Targets?
Your smartphone now contains your entire digital life: your family photos, your bank details, your passwords, your diary. This is exactly what interests scammers.
Scammers exploit our trust and sometimes our unfamiliarity with digital tools. They impersonate your bank, Royal Mail, the NHS, or even your grandchildren in distress.
The 7 Most Common Smartphone Scams
1. The Fake Bank Text
You receive a message: “Your account has been blocked due to suspicious activity. Click here to unblock.” The link directs you to a fake site that looks identical to your bank’s.
How to spot it: Your real bank will NEVER ask for your codes by text or email.
2. The Undelivered Parcel Scam
“Your parcel is waiting at the depot. Pay £2.99 customs fee to receive it.” Even if you are not expecting a parcel, curiosity can make you click.
The trap: By paying these “fees”, you give your bank details to scammers.
3. The Fake Technical Support Call
Someone claiming to be a “Microsoft technician” or “BT support” calls to report a problem on your phone and requests remote access.
The reality: These companies never call in this manner.
4. The Emotional Scam
Via WhatsApp or Facebook Messenger, someone pretends to be a family member in difficulty asking for money urgently.
Tip: Always call the person directly on their usual number to verify.
5. Fake Apps
Apps imitating well-known services (HMRC, NHS, banks) sometimes slip into app stores.
The protection: Only download from the official Google Play Store or Apple App Store.
6. Compromised Public WiFi
In a cafe or station, a free WiFi network captures all your data when you connect.
The solution: Avoid banking operations on public WiFi; prefer your mobile connection.
7. Malicious QR Codes
Stuck on posters or parking meters, these codes redirect you to fraudulent sites.
The reflex: Always check the URL that appears before confirming.
The 10 Essential Steps to Protect Your Smartphone
Set Up Strong Screen Lock
This is your first line of defence. An unlocked phone that falls into the wrong hands gives access to everything.
What to do:
- Enable lock by PIN (6 digits minimum)
- On iPhone: Settings > Face ID & Passcode
- On Android: Settings > Security > Screen Lock
- Avoid obvious codes (1234, your date of birth)
- Set up facial recognition or fingerprint as additional comfort
Enable Two-Factor Authentication
This adds a second verification step when logging into your important accounts (bank, email, social media).
In practice: Even if someone steals your password, they cannot log in without the confirmation code sent to your phone.
How to do it:
- For your Google account: myaccount.google.com > Security > 2-Step Verification
- For your Apple ID: Settings > [your name] > Password & Security
- For your bank: check security settings in your banking app
Never Click a Link in a Suspicious Text
This is the golden rule. The vast majority of scams start with a click on a fraudulent link.
The right method:
- Receive a text from your bank/Royal Mail/NHS? Never click
- Open your browser manually instead
- Type the official website address yourself
- Log in normally to check if there really is a problem
Check Message Senders
Scammers use techniques to imitate official numbers, but clues always give them away.
Warning signs:
- Spelling or grammar mistakes
- Alarmist tone creating urgency (“You have 24 hours to…”)
- Strange sender number
- Request for personal information
Install Only Official Apps
The Google Play Store and Apple App Store verify apps before publication, unlike third-party sites.
Keep Your System Updated
Updates fix security vulnerabilities. Enable automatic updates on your phone.
Use an Antivirus on Android
Recommended free apps: Avast Mobile Security, Bitdefender Mobile Security, Norton Mobile Security.
Pay Attention to App Permissions
When installing an app, be alert to the permissions it requests. A torch app asking for access to your contacts and GPS location? That is suspicious.
Back Up Your Data Regularly
In case of a serious scam requiring a factory reset, your memories and contacts will be preserved.
Install a Screen Protector and Anti-Theft Case
Physical security matters too! A cracked screen makes you more vulnerable.
What to Do If You Are a Victim
Despite all precautions, it can happen. Here is the procedure to follow in order:
Within the Hour
- Contact your bank immediately to block your card (number on the back of your card, available 24/7)
- Change all your passwords: bank, email, social media
- Take screenshots of the fraudulent message as evidence
Within 24 Hours
- Report to Action Fraud at 0300 123 2040 or online at actionfraud.police.uk
- Report suspicious texts by forwarding them to 7726 (free)
- Contact your local police on 101 if needed
Within the Week
- Monitor your bank statements to detect any suspicious transactions
- Contact Citizens Advice on 0800 144 8848 for personalised support
- Replace your SIM card if your number has been compromised (at your provider’s shop)
Important: Do not delete fraudulent messages before taking screenshots. They are evidence.
Free Tools to Strengthen Your Protection
Call Verification Apps
Truecaller (free on Google Play and Apple App Store) — automatically identifies unknown numbers and blocks known spam.
Password Manager
Bitwarden (free) — stores all your passwords securely. Only one master password to remember.
Secure Messaging App
Signal (recommended by security experts) — end-to-end encrypted messages. Free and simple to use.
UK Official Resources
Official Websites
- actionfraud.police.uk: UK’s national fraud reporting centre
- ncsc.gov.uk: National Cyber Security Centre guidance
- citizensadvice.org.uk: free advice on all matters including scams
Emergency Numbers
- 999: Emergency services
- 101: Police (non-emergency)
- 0300 123 2040: Action Fraud
- 0800 144 8848: Citizens Advice (free)
7-Day Action Plan
Day 1 (Today): Secure Your Lock
- Enable or strengthen your PIN (6 digits minimum)
- Time needed: 5 minutes
Day 2: Clean Up Apps
- Delete apps you no longer use
- Check your main apps come from official sources
- Time needed: 15 minutes
Day 3: Update
- Install all pending system updates
- Enable automatic updates
- Time needed: 10 minutes + download time
Day 4: Install Protection
- Download an antivirus (Android) or enable two-factor authentication (iPhone)
- Time needed: 10 minutes
Day 5: Back Up
- Enable automatic backup to iCloud or Google Drive
- Time needed: 5 minutes
Day 6: Create a Trusted Contacts List
- Save official numbers (bank, 999, 101, Action Fraud)
- Note a family member’s number to contact if in doubt
- Time needed: 10 minutes
Day 7: Run a Test
- Ask a family member to send you a fake suspicious message to practise detecting it
- Time needed: 5 minutes
Total: Less than one hour spread over a week for maximum protection!
Conclusion: Take Back Control of Your Digital Security
Protecting your smartphone from scams is not about technical skill, but about good habits and common sense.
Remember these three golden rules:
- Never click on a link received by text or email — go directly to the website by typing the address
- If in doubt, do nothing and ask for advice from a trusted family member
- Keep your system and apps up to date — updates are your friends
Your smartphone can once again be a tool for freedom and connection with your loved ones, not a source of worry.
This article is regularly updated to reflect new threats and solutions. Last update: March 2026.
Questions fréquentes
-
A fraudulent text often contains spelling mistakes, creates a sense of urgency, comes from an unknown number and asks you to click a link. Official organisations like your bank, Royal Mail or the NHS never ask for your codes by text.
-
On Android, a free antivirus like Avast or Bitdefender is recommended for extra protection. On iPhone, the system is more closed and an antivirus is not necessary, but vigilance against fraudulent texts and calls remains essential.
-
Contact your bank immediately to block your card, change all your passwords, take screenshots as evidence, then report to Action Fraud on 0300 123 2040. You can also report the scam to the police on 101.
-
On Android, go to your Google account settings, Security section, then enable 2-Step Verification. On iPhone, go to Settings, your name, then Password & Security to enable two-factor authentication.
-
Yes, research shows that a significant proportion of people over 60 have been contacted by a scam attempt on their mobile. Scammers exploit trust and sometimes unfamiliarity with digital tools. But with good habits, you can reduce the risks by 95%.