What is a SIM Swap Scam?
HTML-код
- Опубликовано: 30 янв 2024
- Today's video outlines how a SIM swap scam works, warning signs that you may be a victim of a SIM swap attack, and some tips to prevent such an attack. We have two sources today, the FTC and the Avast Academy website, both of which are linked below.
FTC: consumer.ftc.gov/consumer-ale...
Avast Academy: www.avast.com/c-sim-swap-scam
This video is proof of the value of public libraries and the good people who work there.
Sure. You could never find this info online, such as at Avast.
Great job! My question is ‘Why should the victim be on the hook for their losses when it was the cell service provider who got scammed?’ The victim of the scam had no part in the process. Someone should be holding the cell providers for getting scammed and reimbursing the victims. IMHO
Verizon - the customer is ALWAYS wrong. Company policy it seems
We need legislation to hold the SPs accountable.
The victim usually got phished or tricked into installing something which how the scammer got the information to trick the service provider.
How can " the rep " know it is not you ? You see how the bad guys get in, just change the way that you "roll".
A lot of cell companies are scammers themselves. I tried unlocking my phone to use another provider. Suddenly I don't get emails from them. So they can't unlock my phone. Because they need to "verify" me. Still get all their other emails though.
Why do providers allow SIM activation over the phone? This should require an in-store switch only, with photo id drivers license for verification. Inconvenient, yes, but more secure. Thanks for the simple explanation.
Common sense is that they are in on it.
A lot of people who work in these stores are fresh out of high school. A lot of customers are going to be nervous about giving them sensitive information about themselves.
Seems to me a provider would be able to see if the “lost or stolen” phone is connected to their network. If so, immediate red flag! 🚩 provider can also easily geo-locate the device via cell tower pings.
Many reasons, with increasing frequency there are cellular providers that keep cost low by not having brick and mortar stores. Ting and Mint, just to name two provide _everything_ online. I suspect this will become more common as we move further into the 21st Century. Finally there are people in rural areas that may live a large distance from their provider, and cellular services are after all a mobile communication phone service. We've been moving ever farther away from physical contact with phone providers since the breakup of the Bell systems.
The stores close early near me. You have to do it over the phone. But it's impossible to hack. Took me forever to guess my secret code again after having created it like 10 years ago. No way could anybody on earth but me have activated a phone on my account. I offered everything, secret and that operator would not budge until I came up with the magic word. I luckily had an old laptop I never used, that had a text file on it with the secret. Otherwise, I would have been without a phone for a day, which would have stopped me from logging onto my job the next morning. Thanks.
While it’s nice to think the service rep is tricked, I tend to think they’re the inside person. I think it’s great the library puts out videos like this! Keep it up!
I have been reading the same sentiment in other videos on the topic. Apparently some phone company workers are in cahoots with the scammers and so allow them to switch your number to a new phone without a pin.
It would be difficult since every customer service action is logged. And it's not usually possible to connect to a specific customer service representative.
I have a criminal in my family that stole from me and had a connection in one of the MAJOR credit bureaus
Definitely carrier rep in on it ....there should be verification to address on record
@@Mavrik9000 I am totally convinced it is done from having insiders collaborating on the scams. They figure out how to bypass all the protocols. remember these criminals work 24-7 to stay ahead of any new safety protocols. And the ones on the inside are at the ready with all the info needed. They are usually of a CERTAIN ethnicity and VERY good with technology.
Demand more accountability from cell phone providers. No sim change unless you are there in person with valid ID.
This could definitely be something you could opt for when setting up your account the first time or later when added as a feature to secure an account better. Just like some have to ask for a PIN. They would know that changing out a sim would need to be an in-store process because the customer indicated this security option. Anything except in-person would be denied.
Seems like a standard practice should be for the provider to call the “lost” phone to see if the actual owner answers.
Because of excessive telemarketing calls, A lot of people don't answer calls nowadays if the caller isn't on their contact list.
The provider could send a text message...asking if they need a new SIM card as someone is in-store claiming to need one for their #. The provider could offer a text message in the contract explaining to the customer why they do this as part of their security measures....this also would let scammers know the providers are actively looking for them making it harder to pull off.
I won't answer the call even if it shows T-Mobile (my provider) legit phone number on the display. Numbers can be easily spoofed. There are no easy solutions to this.
Very good point
"Hi I'm calling from Sprint to confirm you ordered a new SIM card. Can you please verify your identity for me?" ... yeah, would you trust that cold call?
This was the single best video SIM swap tutorial I have seen. Very, very helpful.
Thank you.
Joel
As a former person what has professionally fought fraud this is one of the BEST💪❤ articulations I have yet seen on this topic... New stories are typically "weak" and too abbreviated on this topic. The only thing I can think of to add to this is that SCAMMERS will call you directly with the SAME number as the fraud Dept. with FRAUDULENT "caller-ID" numbers... When people are "stressed" in the heat of the moment, they erroneously ASSume it is the fraud dept. calling them back !!!! When it is NOT, it is actual the scammer... BOTTOM LINE: Only speak to people YOU have called directly ⚠ Thank you for great work❤🙏
but I've noticed even this video leaves out that for them to use this on your bank account, that means they already had information like SSN, login, DOB and passwords. If you try to reset the password for Chase for example it requires info like that, that wouldn't be obtained from just sim swapping. Long Story shot..the victim already had a lot of their stuff hacked , the sim swap was just the last step to finish.
Agree. They are using spoofers that allow a bank's legit number to show up in phone's caller ID. It's best for YOU to initiate the call to the bank.
@@jvanek8512 All potential variations on their techniques but YES often yo have already been "chosen" in some way... BUT sometimes the info was also "hacked" from a store, or website, not only people getting your trash... They can buy your info on the dark web too...
I will have to check with my cell provider and financial institutions. You would think that the cell provider would call the old phone, just to verify before switching. If their is an issue, you would need to visit a store and show and ID and billing statement for verification. It is amazing how much we depend on these devices in our daily lives.
I learned something new here. Scammers are always inventing new scams. Always be wary of everyone.
sure, but in this case, we are punished because of other peoples failures. we dont even have to participate to be damaged here.
On an iPhone, you can go into Settings>Screen Time>Content and Privacy Restrictions>toggle the button on at the top of the page>scroll down to Passcode Changes>switch to don't allow, the Account Changes to don't allow, then you will need to set up a different 4 digit code to lock both. This prevents someone from changing your passcode or making account changes.
Thanks for the tip. I also set Cellular Data Changes to Don’t Allow. There was no opportunity to set up a new four-digit code.
How do you set up a 4 digit code to lock both?
You’ve missed the point completely. The scammer hijacks your phone number by using a service provider to issue a new SIM card with your phone number, they don’t actually take your physical SIM card.
Finally, a thorough explanation of this scam. Thank you.
This is terrific info. The problem with your most important solution .... setting up a stronger authentication key is that it is not an option universally allowed by the most important player here .... YOUR BANK. For now I will remove my cell phone number from my bank account, and ask that a note be placed on my account that says no fund transfers be allowed remotely .
@@mamaroza22 I will let you know, I haven't spoken to my bank yet. I will at least forbid international wire transfers.
I use both an odd user name and math PW. If a fraudster can get past the UN and request a PW change, he will also need the PIN. I wish my bank allowed Yubi keys but the don't yet.
Very well made video! It seems like a huge vulnerability that phone call center employees have the ability to completely bypass the 2 factor authentication system so easily.
Call center employees are probably relatively low paid, and their efficiency is often measured by how many calls/hour they process, which means they are not likely to rigorously interrogate someone calling up to do a SIM swap. Scary.
I spent 2.5 hours talking to an agent that didn’t tell me he was only a sales associate. I finally got to a billing agent but I was really frustrated as you can tell.
Great tutorial, and you get extra points for saying “SIM swap scam” correctly several times. ❤
I had no idea having online account authentication defeated by scammers was so easy. We will definitely take steps to prevent SIM SWAP SCAM. Thank you from San Diego County, California. 😊
I'm very concerned about this topic and have watched some other videos on it. This is by far the best I have seen because it is very systematic, seems pretty comprehensive, and yet brief - which is not say it is easy - but it gives you most helpful directionS to pursue. THANK YOU FOR MOST HELPFUL WORK.
This is the best information I've heard in a while. Clear, concise, and in plain English. Thank you!!
As you you said, “if the phone service provider believes the story and activates the new SIM” - it’s the phone carriers fault, a vulnerability in their process: they simply need to demand that a person come into a storefront in person, with valid govt issued ID and a recent utility bill or bank statement with their name & address to process a SIM card change.
Librarians are our friends! Thank you!
Good information. At the beginning of the video, I thought I was protected because I don't have any financial apps on my phone and never use my phone for any financial transactions. Didn't think about the fact that 2-factor authorization (covered later in the video) could be compromised and the hacker could change my bank account passwords and clean me out. I feel somewhat comforted by the fact that I don't have accounts on Facebook, Instagram, Tik-Tok, etc., so hackers will have to work hard to "phish" for personal info about me.
Thank you for your public service!! It is now "unbelievable" to view the perverse efforts that criminals will use to cheat and steal.
Thanks for keeping your patrons informed. These scams are more and more common.
Thank you for the information. Helpful. Although here in Europe the SIM is sent to the address of the phone user. How the scammer receives the new SIM is critical for this scam to work. Interesting to see your library providing a useful service. Well done.
Great presentation. You’ve explained a complex topic in an easy to understand format. The handwritten visuals were a good touch.
I just recently heard about SIM swap thru a RUclips of someone lost significant amount of money by SIM swap. Thanks so much of sharing the tips.
Excellent, its not the content that matters so much, as how it is delivered. This young lady has a fabulous delivery. No Powerpoint either ☺
Putnam County Library needs to hold on to this person!!
Excellent video. Very informative without a lot of drama. Given that this scam keeps happening, and service providers are well aware of it, it seems to me they should require much more proof to prove identity - including an in-person visit, instead of handling these transactions over the phone. I believe they should be held accountable for any lost funds. Anyhow, keep up the good work!
Very clearly explained. Thank you.
As an information security professional, I have recently been asked what SIM swapping is by a couple of different people. In the future, I will point anyone with such questions to your video.
You explain it better than other similar vids.
An excellent tutorial, most people don’t know about this so you’re providing a great service, I try to let people know about these things all the time, there’s another thing out there you don’t even need a Sim card anymore, there are virtual Sim cards now
part of the problem is the online sites that share ALL of our personal information and they refuse to remove this information.
Exactly right. Your info is out there but you did not give consent.
Very useful advice! I loved the high-tec presentation of points!!
Most cell phone carriers will now set up an additional authentication code for your cell account. This code will be used when ever you or anyone you authorize on cell account, calls the cell customer number for assistance. Without this new code number you set up with your provider... the scammers can not high jack your phone/account and are shut down in step 1. Just like stated in this awesome video (SET UP A NEW PIN NUMBER.... NOW). 🙂
It happened to me 2 weeks ago. Thank you so much for your video. It's important to spread awareness to help others avoid falling victim to the same scam.
Thank you for making us aware of what to do. This kind of attack seems to be on the rise lately
Best explanation of any Sim Swapping video I've seen - great job!
This was an extremely helpful and informative video! Thank you so much for presenting it in such an easy to understand way! 👍
Excellent presentation. I've seen several videos on the topic of "SIM swapping", and this one is by far the most detailed and well-explained. 👍
When I call customer service about my account, they grill me left and right about my identity. It is sickening that these con artists are able to access my account information. These companies need to bear more responsibility when there is a breach. I wonder if the company’s employee is in cahoots with the scammers.
Thank you so much for this information. It's very important to KNOW what the criminals are doing and how we can protect ourselves.
Thank you for spreading awareness about this issue!
Thank you so much for this very clear explanation of SIM card swapping. This is enormously helpful and educational!
I've ALWAYS been leary of using cell phone banking. I was consoled by the banks that it was fairly secure. But that was then. Now, it looks really hazardous. I'll have to pursue stronger protections. Thanks so much for this presentation. Very clear.
its not just banking , its everything, every login thats 2FA. people like me whose work requires logging into other computer systems for access, that would all have to be updated and changed, it would take me days to straighten in out. with the right target its almost like a indirect denial of service attack - with days of lost time wages involved.....
@@orbitalair2103I cannot imagine how banking in any country could be based on the phone number alone. That is beyond reckless. In Finland I need by customer number (8 digits only in my head) by PIN (4 digits only on my head), a single use code from a card the back has provided and then a PIN sent to my phone. Alternatively I can use my mobile app in which I need just a PIN (in addition to the screen PIN).
Use your home PC instead with no autofill PWs. No banking apps or PWs on the phone.
bless you for explaining this in simple terms. You are providing a real public service.
Great work on this topic. Thank you for all you do to keep us informed. Imagine how easy it will be for scammers to get their hands on our accounts if CBDC is implemented. Scary stuff!
This is the best explanation that I have ever heard. You are very good at explaining the subject matter.
This is the best video that I've seen Regarding Sim Swap Scam. Very detailed and informative. Thanks !
Great job summarizing and explaining the SIM swap scam! Thank you for putting it together.
Sounds like carriers need to tighten their security around verification. Require all customers to set up a pin with their carrier.
Consumer cellular does have a pin requirement to enter in to owners account not sure what happens if customer or scammers tells them they forgot their pin
Simple explanation of a complicated scam. Nicely done video!
07:30 - 4 signs that you are a victim of a SIM Swap Scam.
1. Your cell stops working
2. You're notified of activity
3. You're unable to access accounts
4. You notice unauthorized transations
09:32 - How to try to prevent being a victim of a SIM Swap Scam.
1. Don't reply to requests
2. Limit shared info online
3. Setup pin/password
4. SETUP ALERTS!!!!!
5. User stronger options
Thank you, that was a very nice breakdown of the attack mode and preventions options.
Thanks for taking the time to thoroughly explain this process.
This is the best, clearest and most understandable explanation of this topic I have come across online. Thank you very much for this invaluable information.
Great video, comprehensive! I always wondered what a SIM car swap was...i assumed in involved someone actually needing to physicslly have access to your phone! I finally understand. Thank you
Happened to me few years ago. I lost most of my identity data but not money loss. I did a police report but was very frustrating how Police and law department's don't have any knowledge of this sort of issues.
Great video.The scammers are highly educated in the technical field.Millions of people know the minimal about their phone.Thank you for sharing.
Great information given here and presented very clearly. When my details were hacked from a large institution I was concerned that my phone might be SIM swapped and my email account taken over.
Thank you for your easy to understand description.
This was the absolute best and most helpful explanation of sim card swaps. Thank you so, so much!
Not sure why this was recommended in my feed, but really good presentation. Commenting so it appears in more people's feed.
Thank you for the explanation! I hadn't heard of such a thing (yet).
That was so informative, clear layman understood, and well-presented!! Thank You!
Great description of what really happens. don't see that on the internet very often!
Phone companies should be accountable for this shit .
Great information. Many Tks. I never knew this was an issue. Amazing how those hackers can figure this out. If they would only work that hard at a legit job. Well done, clear and concise.
Great presentation regarding the latest scam regarding phone/identity theft - clear, concise and to the point. I use my mobile phone for communication purposes only - no banking, social media, email or other online activity. My carrier does require a pin to make any changes so I am hopefully in good shape against this type of scam. Thanks for posting!
Terrific! Well explained and I loved the simple and Karl Rove style of fast facts on a tiny chalkboard. Well done. I went running to Verizon to make sure my sim is locked. Love your hair!❤
This is great info. More public libraries should put out this type of useful informational videos.
TY, Putnam County - from Orange County, Florida!
Thx hun. I always wondered how sim scams work and u broke it down perfectly and simple again thx.
Cute and succinct, good tutorial on how to conduct the scam. Missing is a summary of how a victim should respond in case of getting scammed. (A website was referenced but to complete this presentation this could have been summarized.)
Was a bit disappointed that Sia didn't break into song, but nonetheless the Sim Swap scam info was useful.
Excellent information and presentation. Thank you so much. The SP is responsible for our security for on line renew of lost SIM card and not mandated renew over the counter in person and ID.
Thank you to the library for providing this education! 🇺🇸 👍☕
Thank God for people like you!
God bless you !
Excellent presentation. Thank you and please consider addressing other forms of cyber crime.
Excellent overview! Thank you.
This was super helpful, thank you! I am going to implement these ideas ASAP.
Not many people know about this scam. I appreciate this video.
Very informative and helpful. Thank you for posting.
Great video on a subject that I have never even heard of . Thank you .
Thank you for this. It was a lot of information but clear and important.
That’s why I picked a code to give to the cell phone company when I call. They will not speak to me without it!!
Thank you so much for your concise, informative, and well presented information. Scammers, car thieves, etc., are always, and have always been, one step ahead of attempts to stop their taking advantage of their fellow citizens. With technology advances, the worst of us still find ways to overcome all obstacles to get their objective’s met, no matter how complex it has become. The information provided made me aware of what to look out for. I appreciate being better informed now.
Thank you for this service. That was a lot of information in a short video.
Thanks for this complete explanation of SIM swap scams.
Great job. Thank you for the heads up.
OK! That was awesome.Just read about this for the first time recently and this brought it home. In the end though, it is still people not being dilligent ...
Very clear and useful imformation, thank you.
Excellent job. Very clear and thorough.
Really, really good video! Excellent information and delivered very well. I learned something and sent this to my daughter. Thank you!
Very simple good explanation. Thanks!
Do not do banking through your phone.
Omigosh!! Super valuable video! Thank you for putting this together!!
Very good explanation of everything, best I’ve found. Thank you very much for doing this.
Thank you for the information on this. Excellent video.
Beautifully explained. Thanks!
You should always have multiple ways of receiving alerts on your accounts, meaning not only texts, but also email notifications. Even if they have your SIM, they still don't have access to your email.
And like you said, try to use uthenticator apps if your institutions supports them, especially those that need pins or biometric info to open them such as MS authenticator. I think it should law that all institutions support authenticator apps to prevent such scams. And even to prevent institutions from being hacked.
And all cellphones should always have passcodes to get into them in case it's stolen or you lose it.
Your explanation was clear and concise. Thank you.