Published on July 12, 2022
Cybersecurity experts warn that mobile phone SIM swapping is on the rise but say it’s possible to avoid becoming a target as long as you’re careful with personal data, are aware of ‘phishing’ and look out for loss of signal
New Delhi – Cyberattacks that can steal personal data are on the rise, as are attacks on organisations through ransomware or malicious emails. Here in India, our Check Point Threat Intelligence Report states that an organization in India is being attacked on average 1783 times per week in the last 6 months, compared to 1645 attacks per organization in APAC, with 89% of the malicious files in India delivered via Email in the last 30 days.
Phishing is set to rise in India with the Indian Computer Emergency Response Team (CERT-In) reporting that the total number of phishing incidents in India has increased from 280 in 2020 to 523 in 2021, with the total number of ransomware attacks increasing from 54 in 2020 to 132 in 2021.
While most people are aware of phishing attacks, very few are alert to the dangers of so-called SIM swapping, whereby cybercriminals get hold of a duplicate of a victim’s mobile SIM card. With a duplicate SIM, they can then circumvent the two-step verification process that protects services like your banking app. The problem is so severe that the FBI issued a warning about SIM swapping and in light of this, Check Point® Software Technologies Ltd. (NASDAQ: CHKP), a leading provider of cybersecurity solutions globally, has put together three simple tips to avoid becoming a victim.
What is SIM swapping?
SIM swapping happens when a cybercriminal obtains a duplicate of your SIM card. However, in order to do this, they need access to your personal data such as ID, phone number and full name, which they can get hold of using phishing techniques. Then they can simply contact your mobile operator and impersonate you over the phone or internet or even by visiting a physical store.
Once the duplicate SIM has been obtained, the cybercriminal only has to insert the card into a device to access all the information and data of the victim’s account including call logs and message history. From that point on, s/he has complete control and it is easy to access your banking app and steal your money by moving it to another account. Although this would mean using a verification code, don’t forget the attacker has access to your mobile line, so all they have to do is copy and paste the code that was intended for you.
How to stay safe:
“Cybercriminals are always looking for new ways to steal your data to achieve their goals. It’s important that people are able to spot the signs of an attack. If you’re not aware of these tell-tale clues, you’re putting yourself at higher risk and are more likely to suffer more serious consequences. This could mean having your bank account emptied or you could fall victim to identity theft which would enable the criminal to buy goods and services over the internet in your name,” warns Sundar Balasubramanian, Managing Director, India & SAARC, Check Point Software Technologies.