Scammers are sending text messages telling people their loan has been approved, even when no application was ever filed, and the Federal Trade Commission is warning consumers that these messages follow a specific pattern designed to trick them into handing over personal information. Reported losses to text scams hit $470 million in 2024, a slice of the $12.5 billion in total fraud losses the agency tracked that year. The FTC says the single biggest tell is language that makes the fake process feel already underway.
Why fake loan texts are surging after tax season
The timing of these scam texts is not random. People who just filed taxes and are waiting on refunds, or who stretched their budgets during the spring, are more likely to engage with a message that says money is available. The hypothesis that loan-approval smishing spikes in the first quarter after tax-refund season, driven by recipients already under financial pressure, fits the broader pattern the FTC has documented: scammers target people at moments of vulnerability, not just when text volume is highest overall.
The FTC’s consumer alert on fake loan texts describes the core trick. Scammers craft messages with phrases like “last step,” “reply YES,” or “your application is ready” to create a false sense that a legitimate process is already in motion. The goal is to short-circuit the recipient’s skepticism. If a person believes they somehow started an application, they are far more likely to tap a link or reply with sensitive details like a Social Security number or bank account information.
The agency’s data on fraud losses puts the scale of the problem in sharp focus. Reported losses to fraud totaled $12.5 billion in 2024, according to the FTC’s Consumer Sentinel Network. Text-initiated scams accounted for $470 million of that total, making them one of the costliest fraud channels the agency tracks. Loan-approval texts sit squarely inside that category, and the FTC’s Data Spotlight on 2024 text scams identified them by hand-coding a sample of consumer reports to sort loan messages from other types of debt-related smishing.
How the FTC identifies the tell in loan-approval smishing
The FTC’s guidance is specific about what separates a scam text from a real lender notification. Legitimate lenders do not send unsolicited texts telling strangers their loans are approved. Real pre-approval offers come through channels a borrower has already engaged with, and they do not ask for replies via text. The scam versions, by contrast, use urgency language and a false sense of continuity to push people toward a link or a reply.
The agency has shown it takes “pre-approved” claims seriously even outside the smishing context. In September 2022, the FTC took action against Credit Karma for what it called allegedly misleading offers. That case centered on marketing, not text fraud, but it established that the agency views deceptive “approved” or “pre-approved” language as a consumer harm worth pursuing through enforcement. The same logic applies to scam texts that borrow the vocabulary of legitimate lending to extract personal data.
The FTC’s methodology for tracking these scams relies on reports consumers file through its intake portal at ReportFraud.ftc.gov. Those reports feed into the Consumer Sentinel Network, which the agency uses to identify trends, publish data spotlights, and build enforcement cases. The more people report scam texts, the better the agency can measure which types of messages are growing fastest and where the money is going.
What the FTC’s data does not yet reveal about loan-text scams
The agency’s published data has real limits. The FTC’s press releases and data spotlights provide national aggregate totals for text-scam losses but do not break those numbers down by state or by the demographics of victims. That gap makes it difficult to test whether loan-approval smishing hits certain populations harder than others, or whether it clusters in regions with higher rates of financial stress.
The FTC also has not published raw complaint excerpts or exact sample text messages from its 2024 loan-approval reports. Readers know the general pattern, but the specific wording scammers used most often in 2024 is not part of the public record. The agency’s Data Spotlight describes its hand-coding methodology for sorting text-scam types but does not include a full appendix explaining how analysts distinguished loan-approval texts from closely related categories like debt-collection or credit-repair scams.
No public statements from FTC enforcement staff have confirmed active investigations into the operators behind loan-approval smishing rings. The agency’s consumer-facing guidance tells people what to watch for and how to report, but it has not disclosed whether specific enforcement actions targeting these scammers are underway. That silence does not mean there is no enforcement activity; it reflects the general reality that investigations often stay confidential until the agency files a public complaint or announces a settlement.
How to spot and handle a fake loan-approval text
Even without granular public data, the FTC’s guidance offers clear, practical steps for consumers who see a surprise loan text. The first is to treat any unsolicited message claiming “approval” as suspicious, especially if you do not remember applying. A legitimate lender will usually reference details you recognize, such as a recent application you submitted directly through its website or branch, and will not demand that you confirm sensitive information over text.
Scam texts often push you to act immediately, warning that an offer will expire in minutes or that you must “verify now” to avoid losing funds. They may include links that look like a bank or lender but contain subtle misspellings or extra characters. The safest move is not to tap any link in an unexpected loan message. Instead, if you think it could be real, contact the lender using a phone number or website you find independently, such as from a recent statement or the back of a card.
Consumers should also avoid replying to suspicious messages, even with words like “STOP.” Replying can confirm to scammers that your number is active, which may invite more attempts. Deleting the message and blocking the sender is safer, followed by reporting the text to the FTC so it becomes part of the broader data picture.
What to do if you shared information
If a fake loan text succeeds in getting personal or financial information, acting quickly can limit the damage. People who shared bank or card details should contact their financial institution right away to ask about closing or flagging the affected account and monitoring for unauthorized charges. It can also be helpful to place alerts on accounts so you receive notifications of new transactions.
When Social Security numbers, dates of birth, or other identity details are exposed, the risk extends beyond a single fraudulent charge. Victims can use the FTC’s dedicated recovery site at IdentityTheft.gov for step-by-step guidance tailored to the type of information that was compromised. That resource helps people create a personal recovery plan, including placing fraud alerts or credit freezes with the major credit bureaus when appropriate.
After immediate steps are taken, filing a report with the FTC through its fraud portal helps both the individual and the broader public. Including details such as the wording of the text, the phone number it came from, and any links it contained can make the report more useful. Over time, those details feed into the patterns the agency uses to refine its consumer alerts and, when possible, support law enforcement actions.
The bottom line for consumers
Loan-approval text scams thrive on urgency and confusion, exploiting moments when people are already thinking about money, such as right after tax season. The FTC’s alerts and loss figures underline how costly these schemes have become, even as important gaps remain in what the public can see about who is being targeted and how enforcement is unfolding. Until more detailed data is released, the most effective protection comes from individual skepticism: assume that any surprise approval message is a scam, verify offers through trusted channels, and report suspicious texts so regulators can track and respond to the evolving tactics.
More from Morning Overview
*This article was researched with the help of AI, with human editors creating the final content.
