Cygale Pennant | Embrace the technology ... cautiously!

MILLENNIALS – THEY had a front row seat to the technological explosion. They were present at the rise of the Internet, the introduction of mobile phones, laptops, the Iphone and the Ipod, the first users of social media platforms such as Hi5, My Space and Facebook.

Gen Z – born and raised immersed in technology. They are the TikTokers.

Together they make up what I affably refer to as the click or swipe generation. A generation characterised by higher expectations, they live in a social bubble where accessibility and instantaneity are the order of the day. Standing in line is met with righteous indignation. Spoilt, a colourful adjective often used in reference to them. However, should you ask “us”, efficient is a more alluring term of art. If it cannot be done with a smartphone, it is a colossal waste of time, or so they say.

THE CONSUMMATE INVENTION

Today, to the click generation, smartphones are a technological wonder and man’s best friend (akin to an emotional support animal), that we dare not leave home without. There is an application for just about everything: Bill payment, online banking, checking electronic mail, savouring memories with the use of the camera, and generally staying connected with others. It is the consummate invention.

Fellow millennial and Crown Counsel at the Office of the Director of Public Prosecutions, Miss Anita Hall, indicates that the last time she stood in line to make a bill payment was over five years ago. She waited about 30 minutes, 30 minutes of her life which, to this day, she believes could be better utilised.

Freshly minted Gen Z, and legal officer at the Office of the Director of Public Prosecutions, Mr Kemar Setal, with a smirk and a tone that suggests utter disdain, indicates that standing in line whether at the bank or to pay a bill is just ridiculous

INGENUITY OF FRAUDSTERS

However, despite its appeal, the ingenuity of fraudsters dictates that one must always be cautious and perceptive. This technological wonder – with a click or swipe, can easily become a symbol of ultimate betrayal. It is a most paradoxical relationship.

Imagine, putting down your smartphone mere seconds ago, you pick it up and you are suddenly unable to make calls or send messages, you have lost access to all your online banking accounts. You eventually contact your bank and learn that your accounts are all empty. This is the harsh reality of SIM Swapping, one of the many threats to cybersecurity.

WHAT IS SIM SWAPPING?

A SIM (subscriber identity module), is a small card that contains a chip, to facilitate the working of your smartphone. This chip must be inserted. It allows you to make and receive calls; and to send text messages. Without a SIM card, a smartphone can only be used for taking pictures and for accessing the Internet.

A SIM swap scam occurs when fraudsters take control of an unsuspecting victims cell phone by tricking the network provider to connect the victim’s phone number to a SIM card in their possession.

First, information about the victim is gathered through phishing emails. Example, an email might be sent from a purported network provider with instructions that to keep their account open, the victim should click a link. When clicked, the victim is taken to another page where he/she is asked to input personal information such as their name, birthdate and password. Once the information is entered, a fraudster is granted access to the information needed to trick the network provider into a SIM Swap scam.

Other methods include tricking a victim into clicking on an email link which thereafter fills their computer with malware that records their keystrokes, including any passwords or security answers that they type, again providing a fraudster with the relevant information needed to pull off a successful SIM Swap.

Once the service provider is tricked into activating the fraudulent SIM card, fraudsters have full control over the victim’s phone and are able to enter their username and password when logging into their bank accounts.

UNHINDERED ACCESS

The bank will then send a code by text, this code will be needed to access the online account – two factor authentication – however, given the SIM Swap, the code will be sent to the fraudster, granting them unhindered access to the victim’s bank account.

Interestingly, although Anita Hall and Kemar Setal are patriots for the ease and convenience of doing financial transactions via a smartphone, neither has paid sufficient attention to the imminent threats to their cybersecurity. Hall was unsure whether she had anything in place to protect her from a SIM Swap scam, while Setal, with less enthusiasm, indicated that he does not have anything in place, but recognises his need to do so.

There are many victims of SIM swapping, fleeced of millions of dollars. There only recourse now is fervently hoping that through the courts, justice will prevail.

According to a report from the Federal Bureau of Investigations (FBI), in the United States, there has been a significant increase in the number of SIM swapping cases. From January 2018 to December 2020 they received 320 SIM swap complaints with victims losing about US$12 million. However, in 2021 alone, they received 1,611 reports of SIM swaps, the losses amounting to approximately US$68 million.

In Jamaica, between January 2021 and June 2022, two notable SIM swap cases were investigated by the Financial Investigations Division. A total of J$61 million and US$133,000 was fleeced from the bank accounts of 27 customers.

FOUR TIPS TO SAFEGUARD AGAINST SIM SWAPPING

As we float through our social bubble enjoying the niceties and many conveniences of this technological wonder, remember:

1. Be mindful of phishing emails. Your bank and network provider will not ask for your personal financial information through an email.

2. Enhance your cell phone’s account security with not only strong passwords, but also strong security questions. Desist from practices where your security question is your mother’s maiden name, and on Facebook you have tagged your mother’s profile (with her full name).

3. If your phone carrier allows you to set a separate passcode or PIN for communications, consider doing it.

4. Use Authentication Apps which gives you two-factor identification, but ties to your physical device rather than your cell number.

As stated by Matt Galligan, co-founder of Circa, “…the future of mobile, is the future of everything.” However, while we embrace the technology, let us not forget the digital invader waiting to attack.

Cygale Pennant is a Crown Counsel in the Office of the Director of Public Prosecution Cyber Crimes Unit. Send feedback to columns@gleanerjm.com