SIM swapping attacks are also known as SIM hijacking, SIM splitting or SIM jacking. The primary goal is for hackers to gain control of the number of the victim.
This is often done with the help of mobile carriers. Hackers often bribe them employees and ask them to change the victim's phone number and give it to them so they have that control and not the victim. There is also the possibility of not bribing employees but cheating them through social engineering.
Criminals usually use one of the following methods to carry out the attack:
- Criminals bribe or blackmail an official company telecommunications to engage in crime.
- Employees willingly participate, take advantage of customer data access and assist criminals.
- Employees cheat on their affiliates from other branches of the company and force them to swap the SIM card.
Still, according to the FTC: "They could change their passwords and prevent you from logging into your accounts."
What are the FTC's tips to protect against SIM swapping attacks?
- Don't answer in calls, messages or emails that request personal information. Companies do not request such information through these methods. This may be some Phishing attack. So you have to be very careful.
- Don't share a lot of personal information online. Ideally you would not upload it to social media or any site, such as your full name, address or phone number. The Criminals can use this information to answer security questions (to verify your identity) and sign in to your accounts.
- Use a PIN or a strong password in your accounts.
- Use more effective authentication methods, especially in accounts that contain sensitive personal or financial information. SMS-based multi-factor authentication can be bypassed in a SIM swapping attack. In this case it is best to use a application authentication or a security key.
What about people who have been a victim YES swapping attack; How can they reduce the consequences?
- You should contact your carrier immediately and get back your phone number. When this is done, you will need to change your account passwords.
- You should check your credit card and bank accounts immediately to see if any charges or changes have occurred. If you find something strange, contact her immediately bank you.
SIM swapping attacks, as well as any other attack aimed at stealing credentilas and thus gaining access to accounts and personal and financial data, can cause major problems for the victims. For this reason, all users should be very careful and take into account the instructions of experts. security, to stay safe.
How useful was this post?
Average rating / 5. Vote count:
No votes so far! Be the first to rate this post.