Major warning for people who bank, shop online in South Africa

-

 By Myles Illidge



In 2024, digital fraud incidents grew at an alarming rate in South Africa, with phishing, online shopping scams, and mobile malware being some of the biggest online threats to consumers and businesses in the country.

Incidents of banking app and SIM swap fraud have also risen significantly.

According to data from TransUnion, nearly 5% of all attempted digital transactions originating in South Africa in 2024’s first half were suspected to be fraudulent.

It also cites a survey in which six in 10 respondents said they were recently targeted by fraud, with many attacks arising from the telecommunications, financial, and online communities.

For reference, online communities include forums and online dating platforms.

TransUnion’s data shows that digital fraud attempts within the telecommunications sector where the most prevalent.

While it doesn’t specify the most common methods of committing fraud in the telecommunications sector, a potential contributor is a substantial loophole in mobile operators’ SIM swap procedures.

In November 2024, the Communication Risk Information Centre (Comric) warned about a surge in SIM swap fraud in South Africa, with CEO Advocate Thokozani Mvelase calling for more vigilance in the space.

Through vulnerabilities in SIM swap processors, malicious actors can take control of a victim’s phone number to intercept sensitive communications, such as one-time PINs for transactions and banking credentials.

This enables fraudsters to steal funds from bank accounts and commit identity theft.

The vulnerability stems from a loophole where a SIM swap requires the account holder to actively opt out of a SIM swap request; otherwise, it will be approved.

This is problematic when customers are travelling internationally without SMS roaming or when they’re staying in different time zones and aren’t awake to opt out of the SIM swap.

Businesses and consumers in South Africa are vulnerable to this form of attack, which is a significant concern in the country’s fight against fraud.

“This is a direct attack on the trust and security of our digital systems,” said Mvelase.

“The emotional and financial impact on victims is devastating, and the consequences ripple through families, businesses, and the broader economy.”

Comric noted that this was already a significant problem last year, with data from the South African Banking Risk Information Centre showing that SIM swap incidents accounted for almost 60% of mobile banking fraud cases in 2023.

Comric also warned about a marked increase in phishing attacks, social engineering scams, and fake investment schemes.

In October 2024, Kaspersky principal security researcher David Emm told MyBroadband that phishing, online shopping scams, and mobile malware were also of significant concern.

“Regardless of intent or cause, the consequences of a web threat may damage both individuals and organisations,” he said.

Emm said South Africa ranked 28th in the world in terms of risk of being attacked by web-borne threats during the period between July and September 2024.

He said Kaspersky products blocked nearly 3.4 million different Internet-borne threats on computers connected to the Kaspersky Security Network in South Africa.

“Overall, 23.8% of users were attacked by web-borne threats during this period,” added Emm.

Emm listed several proactive measures South African residents and businesses can take to protect themselves from various kinds of cyber threats.

This includes keeping software up-to-date, verifying URLs and senders, and being aware of the types of threats out there.

Kaspersky recommends only opening emails and links when they are sure they can trust the sender. However, if the sender is legitimate but the content is unusual, it is best to contact the person via another form of communication to confirm.

Regarding online shopping scams, it is best to check URLs closely to ensure there are no typos that you may miss at first glance.

“If you have any doubt, don’t click the link; instead type the address yourself using the known, trusted URL for that online service,” said Emm.

To protect yourself from malware, it is best to only download software for computers or mobile devices from official stores or the vendor’s website.

However, he noted that while apps on app stores aren’t always failsafe, they are monitored by moderators, so there is some form of filtration.

“Not every app can get onto these stores,” said Emm.

Furthermore, it is important to check the permissions granted to apps on your devices and to think carefully before providing apps with high-risk permissions, such as Accessibility Services.




Source: MyBroadband



Comments

Post a Comment

Popular posts from this blog

War at NASS amid Akapbio impeachment as DSS takes over

-
Image
                              Akpabio The premises of the national assembly appears like a war zone this morning as men of the Department of State Security (DSS) have taken over amidst speculations of an impeachment move against Sen. Akpabio  Operatives of the DSS have taken control of the national assembly amid allegations of a potential impeachment threat against Senate President, Goodswill Akpabio. Speculations have swirled that some aggrieved northern senators, allegedly dissatisfied with President Bola Tinubu, are reportedly reviving an earlier attempt to remove Akpabio from office. Globally, parliaments have dedicated internal security personnel responsible for maintaining order and safety within and around the premises of parliament. Other security agencies attached to the parliament are present to ensure the safety of lives and property in the event of any security breach or threats that might disrup...
Read more

No sit-at-home in South-East on Tuesday – Ekpa insists

-
Image
 (By thenewsguru.com) The Prime Minister of the Biafra Republic Government in Exile, Simon Ekpa, has clarified that there will be no sit-at-home on Tuesday, October 22, 2024, in the Southeast region. In a statement issued Monday through his official Twitter handle, Ekpa emphasized that only Monday’s sit-at-home was observed to demand the release of Nnamdi Kanu, the leader of the Indigenous People of Biafra (IPOB), and to push for the delegitimization of Nigeria’s authority in the Biafran territory. At CHISCO TRANSPORT, every journey is safe  Ekpa made the clarification in response to circulating claims suggesting that a sit-at-home would also occur on Tuesday. He reiterated that no such directive has been issued for that day. He further noted that he would address Biafrans live on his platform to explain the decision. “Ekpa has cleared the air on the rumored sit-at-home, and he promised to go live on X Space to inform Biafrans that there is no sit-at-home tomorrow,” he said. I...
Read more

United States grand jury indicts Nigerian Catholic priest on three felony sexual assault charges

-
Image
  Anthony Odiong is accused of sexual assault by at least eight women whom the priest had been counseling Ramon Antonio Vargas The criminal case that authorities are building against a Roman Catholic priest accused of preying on women whom he met while working in south-east Louisiana and Texas is progressing, with a grand jury in the latter state indicting him on three felony sexual assault charges. Anthony Odiong, 55, faces two counts of second-degree sexual assault as well as one of first-degree sexual assault in the charges handed up against him recently in the McLennan county, Texas, state court. The charges against Odiong – who was first arrested in July – involve two women. He could receive up to life imprisonment if convicted of the first-degree charge, a stiffer penalty that stems from the fact that the alleged victim in the case was a woman whom Odiong was prohibited from “marrying or purporting to marry” under Texas law. The second-degree counts each carry up to 20 years ...
Read more