On Tuesday, BBC Radio investigators demonstrated two ways to take over a NatWest bank account using the phone. Using social engineering, a fraudster could simply report a victim’s phone lost or stolen, then ask to have their phone number switched to a new SIM card, owned by the criminal. Alternately, the fraudster can simply steal the victim’s phone.
The FBI recently announced a Jamaican lottery scammer has been sentenced to 10 years in prison. According to Special Agent John Gardner, “The Jamaican lottery scammers are like an organized cyber crime group. They are closely knit, highly structured, and have U.S. associates—money mules—who help launder their money.”
Wired: Inside the Cunning, Unprecedented Hack of Ukraine’s Power Grid – TDoS attacks are similar to DDoS attacks that send a flood of data to web servers. In this case, the center’s phone systems were flooded with thousands of bogus calls that appeared to come from Moscow, in order to prevent legitimate callers from getting through.
PYMNTS: Apple Pay’s Low-Tech Security Problem – “Fraudsters and hackers are like water: They’re going to take the easiest path to get what they want. Right now, this is that easiest path … There’s no point of even trying to find a vulnerability in EMV because this works so well,” said Pindrop’s David Dewey.
The Telegraph: Thousands of immigrants targeted for cash in phone scam – Immigrants are being targeted by fraudsters posing as Home Office staff who demand money in exchange for allowing them to remain in the UK, it has been claimed. Visa holders have been pressured into handing over thousands of pounds.
eSecurity Planet: 3 Ways to Defeat ‘Microsoft’ and ‘Dell’ Phone Scams – Technological solutions can also make a significant difference. Knieff suggests looking into voice solutions from companies like Pindrop, which can watch out for recognized criminals. Advanced data loss prevention solutions are also worth looking at, Knieff said.
Consumerist: Lawmakers Renew Push To Curb Unwanted Robocalls – Sen. Ed Markey (MA) introduced the HANGUP Act, which would close the robocall loophole. Even though robocalls is one of the few issues that is not currently a partisan issue, the bill has been sitting idle in committee since being introduced.
On The Wire: Bypassing Phone Fingerprint Sensors With an Inkjet Printer – Researchers at Michigan State University have developed a clever hack that allows them to scan and then print a target user’s fingerprint and then use it to unlock a mobile phone via the fingerprint sensor.