Android owners warned of dangerous ‘SIM swap attack’

ANDROID users are urged to remain vigilant against scammers trying to steal all their money.

Cybersecurity company SecureTream has informed the masses about a scam called SIM swapping.

Android users are urged to remain vigilant against scammersCredit: Getty

WHAT IS SIM SWAPING?

SIM swapping allows a threat actor to obtain your mobile phone account information and then transfer it to his or her phone.

By doing this, the bad guy can gain access to your phone’s data and important accounts.

This could be your private texts, sensitive photos, cryptocurrency wallets and even your banking details.

Moreover, hackers can also gain access to your email inbox and social media accounts.

HOW DOES IT WORK?

SIM swap attacks can be carried out in two ways: physically getting your hands on your phone’s SIM card, or calling your phone company and pretending to be you.

“In a typical SIM swap scam, perpetrators trick mobile service providers into transferring a victim’s phone number to a new SIM card they control,” SecureTeam said.

“If successful, the perpetrator can then intercept text messages and calls intended for the victim’s phone,” she added.

HOW TO STAY SAFE

SecureTeam has shared a list of tips that can help you stay protected against SIM swapping attacks.

The first is to always use an authenticator app, instead of text messages.

An authenticator app is a mobile application that provides an extra layer of security for your online accounts.

Hackers hacked: the UK National Crime Agency’s takedown of LockBit

It works by generating time-based one-time passwords (TOTPs) that you can use to access an account.

“Rather than relying solely on SMS-based two-factor authentication, consider using an authenticator app to generate a time-sensitive code,” says cybersecurity expert Ian Reynolds of SecureTeam.

“This is especially important for sensitive accounts, such as banking and email accounts,” he added.

“These apps are not susceptible to SIM swap attacks, so they provide an extra layer of security.”

Users should also be wary of unsolicited calls and messages and check their bank accounts regularly.

“If you receive an unsolicited call or message, never share personal information without first verifying the identity of the caller or sender,” Reynolds said.

“If you are concerned about the identity of anyone claiming to be from a particular organization, please call the organization directly using its official contact details,” he added.