Presale Code Phishing Scam via Text Message
Scammers text fans a fake 'exclusive presale code' link designed to harvest login credentials and payment details before tickets even go on sale.
Part of: Presale Code Phishing Scam
Last reviewed: 5 July 2026
Fan clubs, artist mailing lists, and venues legitimately send presale codes by text, which is exactly what makes an unsolicited SMS claiming to offer early ticket access so believable to an excited fan checking their phone the moment presale window rumors start circulating.
How this scam works on Text Message (SMS)
A text message arrives claiming to be from a ticketing platform, fan club, or credit card presale partner, containing a shortened or slightly altered link and an urgent claim that a personalized presale code is about to expire. Tapping the link leads to a page that closely mimics the real ticketing site's login screen, prompting the fan to enter their account credentials, and sometimes payment card details, 'to verify eligibility' before the code is revealed.
Because SMS messages are hard to visually verify — there is no padlock icon or sender domain to inspect the way there is in a browser — and because real presale codes genuinely do arrive by text, fans have little intuitive basis for suspicion. Once credentials are entered, the scammers use them to access the fan's actual ticketing account, sometimes purchasing tickets with a stored payment method and shipping or transferring them elsewhere, or simply harvesting the card details directly from the fake form.
Common red flags
- Text arrives from an unfamiliar or spoofed short-code number rather than a source you previously signed up with
- Message uses urgency language like 'code expires in 15 minutes' to prevent careful checking
- Link uses a shortened URL or a domain that is close to, but not exactly, the ticketing platform's real address
- Landing page asks for full account login credentials or card details just to 'view' a presale code
- You never actually signed up for a presale code list connected to that phone number
- Message contains unusual spacing, grammar, or formatting inconsistent with official communications
How to protect yourself
- Never tap a presale link from an unsolicited text; instead, go directly to the ticketing platform's app or website
- Only sign up for presale codes through official artist, venue, or ticketing platform channels
- Check the full URL before entering any credentials, and be wary of shortened or misspelled domains
- Enable two-factor authentication on your ticketing platform account to blunt the impact of stolen credentials
- Verify with the venue or artist's official social account if a presale text seems unusual
- Use a password manager that will not autofill credentials on a lookalike phishing page
How to report it
- Forward the phishing text to your carrier's spam-reporting shortcode (7726 in the US)
- Report the incident to the ticketing platform's official fraud or support channel
- File a complaint with the FTC or the FBI's IC3 (ic3.gov) if credentials or payment info were entered
- Change your ticketing account password and enable two-factor authentication immediately if you clicked the link
Frequently asked questions
How do I know if a presale code text is legitimate?
Legitimate presale texts come from a program you knowingly signed up for and link to the platform's real domain. If you don't recall registering, or the link looks even slightly off, go directly to the official app or site instead of tapping it.
What should I do if I already entered my login on the fake page?
Change your ticketing account password immediately, enable two-factor authentication, and check your account and linked payment methods for unauthorized purchases or changes.