- Inspect the address bar. Does it begin with HTTPS? If the URL begins with HTTPS instead of HTTP, that means that the site has an SSL certificate that authenticates the site’s identity and enables an encrypted connection. Make sure you only enter your information on a site with HTTPS.
- Inspect the site, email or message itself for poor grammar or spelling.
- SiriusXM will never ask you for personal information such as your passwords or social security number.
- SiriusXM does not accept payments using PayPal, Venmo, Zelle or Cash App or via crypto currency. If you are asked to make a payment using any of these methods, such payment is not being made to SiriusXM.
Make sure you are on a legitimate SiriusXM website before providing any information. Our primary domains are:
- www.siriusxm.com (U.S. only)
- www.siriusxm.ca (Canada only)
If a text message or email contains a URL that you don’t recognize, don’t click it and don’t provide any information. Always go directly to your online account or contact us directly.
What should I do if I get a suspicious email or text?
If you are unsure or if you suspect an email or text message you received is malicious:
- Don’t click any links, don’t open any attachments, or don’t reply to the message.
- Forward any emails directly to reportphishing@siriusxm.ca
What if I already clicked the link or gave personal information?
In the event you believe you may have clicked a link or submitted your personal information to a website impersonating SiriusXM:
- Immediately change your SiriusXM password
- Log out of all devices.
- Update your password on any other websites where you use the same email and password combination.
- If you provided any financial information, contact your financial institution(s) directly.
- Send any URL you may have clicked to reportphishing@siriusxm.ca
You can also always contact us via our online chat or call centers at www.siriusxm.ca/contact-us.