What is phishing and how should I report it?

Help & FAQs

When scammers try to trick you into sharing your personal or confidential information using links or attachments sent via email, that is known as “phishing.” If they contact you using text message, that’s sometimes called “smishing” or “robotexting.” These messages can be sophisticated — the emails and texts may appear to be from a reputable company, such as a bank — and this type of electronic fraud is increasingly on the rise.

Always remember: Regions will never call you to ask for sensitive information, such as one-time codes, usernames, passwords and PINs. Provide these details to a trusted Regions banker only if you have reached out to us directly for support.

According to the Federal Communications Commission (FCC), telltale signs of these scams include unknown numbers or email addresses, misleading or confusing information, messy formatting or misspellings meant to sidestep blocking/filtering tools, mysterious links and even “too good to be true” sales pitches.

While phishing has typically been associated with emails or texts, there are also scams that use a combination of phone messages and toll-free numbers. 

How to report a scam

If you receive a suspicious email or text: forward it to phishing@regions.com and then delete it. Never respond to suspicious texts, even if the message instructs you to text “STOP” to discontinue them. Do not click on links you have not requested, and block the incoming number or email address.

If you receive a suspicious phone call or voicemail: hang up or don’t answer the call. You can verify whether the number is legitimate by visiting Regions Help & Support (for customer service) or using our Locator tool (for branches and bankers). Always dial the number directly, as opposed to clicking on it to call back from your device.

If you responded to what you believe to be a fraudulent communication and feel your personal information may be at risk: report it to the bank right away to initiate possible fraud prevention procedures. Call us immediately at 1-800-REGIONS (1-800-734-4667).

Recognizing scams: Does it feel like FRAUD?

  • Fishy — Scammers have many tools at their disposal to create messages, phone numbers, links and sites that mimic legitimate ones. But something about these experiences may feel a bit “off” or out of the ordinary. Always trust your instincts! Immediately end the call or delete the text/email if something seems suspicious to you. Be especially cautious about clicking on any links that you did not request.
  • Risky — Think twice if you’re asked to provide sensitive information that would give someone broad access to your accounts and/or visibility into your activity. If you think you may have been targeted by a scammer, change your username and password and call us immediately. 
  • Anonymous — These scams generally operate by someone you don’t know or who won’t identify themselves unexpectedly reaching out to you. Remember that Regions will never call you to ask for your personal identifying information or account credentials.
  • Urgent — Scammers often employ a sense of alarm as a method of persuasion. Ironically, this can take the form of claiming that your account has been compromised in some way, such as an alleged fraudulent transaction or other security breach.
  • Demanding — Someone with malicious intentions may rely on pressure tactics ranging from pushy to threatening. The tone may even be friendly but insistent, always designed to keep you from having the time to assess the fishiness or riskiness of the situation.

The information presented is general in nature. Regions reminds its customers that they should be vigilant about fraud and security, and that they are responsible for taking action to protect their computer systems. Fraud prevention requires a continuous review of your policies and practices, as the threat evolves daily. There is no guarantee that fraudulent transactions will be prevented or that related financial losses will not occur.