Context:
Google Fi wireless has introduced a security feature called ‘Number Lock’. This new feature empowers users to take control and prevent a growing cybersecurity threat – SIM swapping.
Relevance:
GS III: Security challenges
SIM Swapping Scam
The SIM swapping scam is a sophisticated form of fraud that exploits vulnerabilities in the telecom system to gain unauthorized access to personal information and financial accounts. Here are key aspects of how this scam operates:
- Method: Fraudsters typically start by gathering personal details such as phone numbers, bank account information, and addresses through phishing or vishing (voice phishing) techniques.
- Execution: Armed with this information, they visit the victim’s mobile operator’s retail outlet or contact customer service, pretending to be the victim. They often use forged identification documents and report a fake theft of the victim’s SIM card or mobile phone.
- Obtaining a Duplicate SIM: Using the false report of theft, they convince the mobile operator to issue a duplicate SIM card. This duplicate SIM can function even when the original SIM is still active.
- Minimal Interaction with Victims: Unlike other scams that rely on direct communication with victims to extract OTPs or private information, SIM swapping often doesn’t require such direct interaction. Fraudsters may use missed calls to disrupt network connectivity, prompting victims to temporarily leave their phones unattended.
- Gaining Control: Once the SIM is swapped, all calls, texts, and two-factor authentication codes are routed to the fraudster’s SIM card. This allows them to intercept sensitive information like passwords and OTPs, potentially gaining access to the victim’s bank accounts and other secure accounts.
- Impact: Victims may not immediately realize they have been targeted until they notice unusual activity in their accounts or experience loss of service on their phones. By then, fraudsters may have already accessed and misused sensitive information.
To protect against SIM swapping scams, it’s crucial to:
- Enable PIN/Password Protection: Set up a PIN or password with your mobile carrier to prevent unauthorized SIM swaps.
- Monitor Account Activity: Regularly check your financial accounts and mobile services for any unusual or unauthorized activity.
- Avoid Sharing Personal Information: Be cautious about sharing personal details online or over the phone, especially in response to unsolicited requests.
-Source: The Hindu
