Scam script · SMS / text

Fake Bank 'New Payee Added' Verification Text Scam Examples

Texts claiming a new payee was added to your account create panic and direct you to a fake page or callback number to 'cancel' it — handing over your login or card details.

Last reviewed: 1 June 2026

Sanitized example messages

Illustrative, sanitized examples. Personal details are replaced with placeholders such as [phone number] and [fake link].

[Bank]: A new payee [name] has been added to your account. If this wasn't you, cancel here: [fake link]

ALERT from [Bank]: Outgoing transfer of [amount] to [payee] authorised. Not you? Call [fake number] immediately.

[Bank] Security: Your account payee list was updated on [date]. Verify your identity to protect your account: [fake link]

Unusual activity: new bank transfer payee added. If you didn't do this, tap to cancel within 15 minutes: [fake link]

What the scammer wants

To make you panic and either click a phishing link or call a spoofed number, where you are tricked into providing login credentials, one-time codes, or authorising a 'reverse transfer' that actually moves money to the scammer.

Red flags in the message

Urgency with a very short window to 'cancel'
A link to a domain that is not your bank's official website
A callback number embedded in the text rather than the number on your card
Request for a one-time code, PIN, or password over phone or link
Texts from a new number even though your bank always uses the same one

A safe response

Do not click or call back. Log in to your bank app directly by typing the address or using your app, and check the payee list there. If in doubt, call the number on the back of your card only.

What not to send

Online banking passwords or PINs
One-time passcodes (OTPs)
Full card details

What to do if you already replied

Call your bank's fraud line using the number on your card or bank statement immediately
Change your online banking password and revoke any sessions
Report the text to your national messaging-abuse service (e.g. 7726 in the UK)

Evidence to preserve

Screenshot the full message or call details
Note the sender number, email, or profile
Save any links (without clicking) and payment details
Record dates and times

Sanitized example messages

Illustrative, sanitized examples. Personal details are replaced with placeholders such as [phone number] and [fake link].

[Bank]: A new payee [name] has been added to your account. If this wasn't you, cancel here: [fake link]

ALERT from [Bank]: Outgoing transfer of [amount] to [payee] authorised. Not you? Call [fake number] immediately.

[Bank] Security: Your account payee list was updated on [date]. Verify your identity to protect your account: [fake link]

Unusual activity: new bank transfer payee added. If you didn't do this, tap to cancel within 15 minutes: [fake link]

Red flags in the message

Urgency with a very short window to 'cancel'

A link to a domain that is not your bank's official website

A callback number embedded in the text rather than the number on your card

Request for a one-time code, PIN, or password over phone or link

Texts from a new number even though your bank always uses the same one