Check out this new Truist phishing email with me. You don’t want to fall victim to this ruse!
The normal tells are there: the sender email address is dodgy and they use the word “kindly”. But otherwise, this one is a solid attempt and may fool some people. Especially if viewed on a mobile device, where email and grammar details are more easily missed.
If someone clicks the weblink in this phishing message, they will taken to a convincing fake website:
Again, another somewhat believable facade, but the URL should be a dead giveaway:

What’s really dreadful about this scam is that if a victim is convinced to type in their credentials, the website is capable of asking you to satisfy any 2FA on the account:
If someone is unlucky enough to cooperate to this point, they’ve given some bad actor access to their Truist accounts. And they aren’t going in there to pay your mortgage. We can expect they want to start transferring your money to faraway places.
How to Stay Safe
I can recommend that you:
- Remain dubious and mistrustful about any unexpected emails/communications
- Sidestep any odd messages, and deliberately visit www.truist.com to verify anything
- If using a mobile device, avoid browsers and use the Android or iOS Truist app to sign in
- Call Truist if you fallen for this ruse, or if you just want to talk to someone, at 844-487-8478
- Report Truist-related scams by forwarding them to emailabuse@truist.com
Also, please understand that your stored passwords won’t autofill into most scammer websites. If you allow your browser to save and fill in your bank credentials, that won’t work on this fake-Truist page. Don’t manually enter your password on a site that isn’t autofilling, and let that be your sign that you’ve gone somewhere sketchy.


