I got a text saying to click a link to 'confirm' a bank account change on my benefits that I never made - what does this mean?
This could indicate either a phishing attempt using a fake alert to get you to click, or in rarer cases a genuine warning that someone actually tried to change your bank details fraudulently - verify directly through your official account either way.
Last reviewed: 5 July 2026
Explanation
There are two overlapping possibilities behind this kind of text. In the more common scenario, it's simply a phishing message inventing a fake 'bank change' alert to create alarm and get you to click a malicious link, with no real change ever attempted. In a more concerning but less common scenario, a scammer may have already partially compromised your identity details and genuinely attempted to change your bank details with the real agency, triggering a real automated security alert - though even then, the text itself might not be the actual official alert, and could instead be a scammer's fake version sent to intercept your reaction.
Because of this overlap, the safest response in either case is the same: do not click any link in the text. Instead, log into your official benefits account directly by typing the agency's address into your browser, and check whether your bank details show any unexpected or unfamiliar change. If a change was genuinely attempted or made without your authorization, you'll be able to see and correct it directly through the official, secure channel, and can then report the identity compromise to the agency.
This situation is also a good moment to review your account security more broadly, since a genuine attempted bank detail change can indicate that your personal information has been compromised elsewhere, such as through a data breach or a previous successful phishing attempt.
Common red flags
- Text includes a link rather than directing you to log in independently
- Urgent language pressuring an immediate click to 'stop' or 'confirm' a change
- You have no memory of requesting any bank detail change
- Sender number looks like an ordinary mobile number, not an official short code
- Asks for your login credentials or bank details directly within the text flow
- No matching notification visible when you check your account through the official app or website
What to do now
- Do not click the link in the text
- Log into your official benefits account directly to check your actual bank details on file
- If a change was genuinely made without your authorization, correct it immediately through the official channel and report it
- Change your account password and enable extra security features if available
- Check other accounts for signs your personal information may be compromised more broadly
- Report the text itself as suspected phishing regardless of the outcome
Frequently asked questions
How do I know if a bank detail change was really attempted?
Log into your official benefits account directly and review your bank details and account activity - this is the only reliable way to check, not the text itself.
What if my bank details really were changed without my knowledge?
Correct them immediately through the official account or by calling the agency directly, and treat it as a sign your personal information may be compromised elsewhere too.