Where does the 86975 text message come from?
Got a random text from 86975? You’re not alone. This short code is used by dozens of banks and credit unions to send fraud alerts—but scammers love to spoof it, too.
That message could be a legitimate heads-up about suspicious activity on your card. Or it could be a phishing attempt designed to steal your financial info. Here’s how to tell the difference.
Who owns the short code 86975?
- Not owned by a single bank—it’s a shared number used across multiple US financial institutions
- Primarily tied to FIS Global’s Falcon Fraud Manager, a third-party fraud monitoring service
- Used by banks and credit unions for automated debit/credit card fraud alerts
- Active across dozens of regional and national institutions
So why do so many banks text from the same number? It comes down to outsourcing.
Most mid-sized banks and credit unions don’t build their own fraud detection systems. Instead, they contract with services like FIS Global, which runs Falcon Fraud Manager across a shared infrastructure—including the 86975 short code.
That’s why you’ll see everything from First Merchants Bank to Suncoast Credit Union sending alerts from the exact same number.
What is this number used for?
- Fraud alert notifications—real-time texts when suspicious transactions hit your debit or credit card
- Transaction verification—simple yes/no replies to confirm whether you authorized a purchase
- Card blocking—reply “NO” and your card gets frozen immediately
Here’s how it works: when fraud monitoring flags unusual activity—say, a purchase in a state you’ve never visited or a charge that doesn’t match your spending patterns—you get an immediate text from 86975.
A legitimate message typically includes:
- Your bank’s name
- The last four digits of the affected card
- The merchant name and transaction amount
- Instructions to reply “YES” or “NO.”
ESL Federal Credit Union confirms that alerts go out “within a minute of identifying” suspicious activity. First Financial Bank notes that legitimate texts only ask for a yes or no response—nothing more.
If you confirm the transaction, your card keeps working. If you flag it as fraud, your bank blocks the card and kicks off an investigation.
Is the 86975 short code safe or a scam?
Threat level: MODERATE
- You bank with an institution that uses 86975 + the details match → likely safe
- Message asks for PINs, passwords, or full card numbers → scam
- Contains links or callback numbers → scam
- Claims to be from a bank you don’t use → suspicious, don’t engage
The short code itself is legit. The problem is what’s inside the message.
Criminals actively impersonate 86975 fraud alerts. TC Federal Bank warned customers about fraudulent texts mimicking their fraud monitoring system.
Exchange Bank of Missouri issued a similar alert, telling customers to “hang up immediately” if contacted by scammers posing as bank reps.
First Bank Richmond and Mutual Federal have both published fraud notices about fake 86975 messages.
On Reddit, users in r/Scams and r/AllyBank regularly discuss getting suspicious texts from this number—and how criminals can spoof the sender ID to make fakes look real.
How scammers exploit 86975
- Creating panic—fake messages claim your account is compromised, pressuring you to act before thinking
- Requesting sensitive info—PINs, full card numbers, CVV codes, passwords, Social Security numbers
- Including malicious links—phishing sites designed to look like your bank’s login page
- Providing fake callback numbers—connecting you to criminals posing as bank reps
- Using vague details—”unusual international purchase” instead of specific merchant names and amounts
WSFS Bank specifically warns that linked texts are a common scammer tactic. Legitimate 86975 alerts work through text replies only—no links, no phone numbers, no websites.
How to spot a fake 86975 text
| Feature | Legitimate Alert | Phishing Attempt |
| Response type | Yes/No only | Asks for PINs, passwords, card numbers |
| Links | None | Clickable URLs to fake bank sites |
| Details | Specific merchant, exact amount, last 4 digits | Vague “suspicious activity” language |
| Bank name | Identifies your specific institution | Generic or missing |
| Phone numbers | None included | Provides a “callback” number |
| Grammar | Professional, clean | Errors, odd formatting |
| Tone | Direct, factual | Threatening, extreme urgency |
Banks and credit unions confirmed to use 86975
Banks: First Merchants Bank, Republic Bank, WSFS Bank, First Financial Bank, First Bank Richmond, Hoosier Heartland State Bank, BancFirst, MidFirst Bank, RBC Bank, Banner Bank, SmartBank, Ally Bank, and Mutual Federal.
Credit Unions: ESL Federal Credit Union, Suncoast Credit Union, Members 1st Credit Union, Empower Federal Credit Union, HIFICU, and Global Credit Union.
These lists aren’t exhaustive. Plenty of other regional institutions use the same FIS Global infrastructure. If you’re not sure whether your bank uses 86975, just call them directly using the number on the back of your card.
What to do if you bank with an institution using 86975
- Check the details. Does the merchant, amount, and card match a real purchase? Look for specifics that only your bank would know.
- Verify independently. Open your bank’s official app or log in through your browser—not through any link in the text—and check recent transactions.
- Respond if it checks out. Reply “YES” to approve the purchase. Reply “NO” to block your card and trigger a fraud investigation.
- When in doubt, call your bank. Use the number on the back of your physical card. Not a number from the text.
- Never share sensitive info via text. No PIN. No full card number. No CVV. No password. No Social Security number. Ever.
What to do if you don’t bank with any institution using 86975
Report it. Forward the text to 7726 (SPAM) so your carrier can investigate. You can also file a report with the FTC at reportfraud.ftc.gov.
Don’t respond. Even replying “STOP” confirms your number is active and invites more attempts.
Don’t click any links. They often lead to phishing sites built to steal your credentials.
Don’t call any numbers in the text. They likely connect to scammers, not bank reps.
Block the number on your phone.
FAQ
Is a text from 86975 real?
The short code is verified and legitimate—used by dozens of banks for fraud alerts. But scammers can spoof it. A message is real when it comes from a bank where you have an account, includes specific transaction details, and only asks for yes/no confirmation. Always verify through your bank’s official app or the number on your card.
How can I identify a fake 86975 text message?
Real alerts include your bank’s name, last four card digits, specific merchant info, exact amounts, and yes/no instructions. Fakes include links, request sensitive data like PINs or full card numbers, use poor grammar, provide callback numbers, or create extreme urgency without specifics.
What should I do if I receive a message from 86975?
Check your recent activity through your bank’s official app—not through any link in the text. If you recognize the transaction, reply “YES.” If you didn’t authorize it, reply “NO” and your card gets blocked. If you’re unsure, ignore the text and call the number on the back of your card.
Can I opt out of fraud alert messages from 86975?
You can text “STOP” to 86975 to end alerts. But this disables a critical security layer that catches unauthorized charges in real time. Most banks recommend keeping fraud alerts active.
Why did I get a fraud alert if I didn’t make any purchases?
Someone may be trying to use your card information. Reply “NO” immediately to block the card and trigger your bank’s fraud investigation. Then call your bank using the number on your card to report the unauthorized activity and request a replacement card.
What if I accidentally replied “YES” to a suspicious 86975 message?
Call your bank immediately using the official number on your card. Explain what happened. They can review recent transaction attempts, freeze your card, reverse fraudulent charges, and issue a replacement. Quick action minimizes damage.
Is it free to reply to 86975 messages?
Standard message and data rates from your carrier apply. If you have unlimited texting, there’s no extra cost. Only reply to verified alerts from banks where you actually hold accounts.
How do I report a fake 86975 text?
Forward the message to 7726 (SPAM) to report it to your carrier. File a complaint with the FTC at reportfraud.ftc.gov. Contact your bank’s fraud department directly so they can warn other customers.
Why do so many different banks use the same short code?
Most mid-sized banks and credit unions outsource fraud monitoring to third-party services like FIS Global rather than building their own systems. This shared infrastructure uses the same short codes across all participating institutions.
What should I save in my phone contacts?
Add 86975 labeled with your bank’s name (e.g., “First Merchants Fraud Alerts”). This helps you spot legitimate alerts faster. But remember—a saved contact name doesn’t guarantee authenticity. Scammers can spoof any number, so always verify suspicious messages through official channels.
