Security Market Segment LS
Sunday, 25 August 2019 23:56

Warning on emergence of new SMS phishing scam Featured


Security firm Proofpoint says that retailer Kmart’s recent warning of a new attack by a sophisticated SMS scam means that it is important for Australians to remain vigilant and aware of these types of attacks.

Proofpoint threat intelligence lead, Chris Dawson says the scam warned about by both Kmart and the NSW Police, claims Kmart customers have won a prize, and uses the real names of family and friends to increase the scam’s legitimacy.

And to claim the prize, the message asks users to pay a small fee.

“SMS phishing targeting consumers is on the rise, and cybercriminals are introducing new techniques to increase its effectiveness,” says Dawson.

“These SMS scams increasingly employ sophisticated social engineering tactics to convince recipients of the message’s authenticity.

“The sophistication of this latest scam is particularly noteworthy as the hoax uses real names of family members and close friends.”

“Because there are no commercially available inbound filtering products for SMS like those that exist for email, attackers have discovered sending text messages can be highly effective for directing users to fraudulent websites and tricking users into handing over their banking credentials,” Dawson cautions.

“This gap in defence is compounded by the small screens of mobile devices, which make it difficult to determine whether websites are fake, as well as the immediacy normally associated with SMS-based communications.

“Even if recipients become suspicious when asked for their credit card details, attackers already have a phone number and access to an associated email account. For many providers, this is enough data to port the phone number away from the original provider and take control of a victim’s online identity. In many cases, recipients also enter credit card data, allowing the attackers to rack up credit card charges and steal victim identities.”

Dawson says that as a majority of Australians use a smartphone each day, businesses should ensure that their employees are trained to spot malicious phishing attempts delivered via SMS, “and to exert greater management and control over the security of the devices they provide to their employees”.

“For consumers, the burden lies with them to treat unsolicited text messages with extreme caution,” Dawson concludes.


26-27 February 2020 | Hilton Brisbane

Connecting the region’s leading data analytics professionals to drive and inspire your future strategy

Leading the data analytics division has never been easy, but now the challenge is on to remain ahead of the competition and reap the massive rewards as a strategic executive.

Do you want to leverage data governance as an enabler?Are you working at driving AI/ML implementation?

Want to stay abreast of data privacy and AI ethics requirements? Are you working hard to push predictive analytics to the limits?

With so much to keep on top of in such a rapidly changing technology space, collaboration is key to success. You don't need to struggle alone, network and share your struggles as well as your tips for success at CDAO Brisbane.

Discover how your peers have tackled the very same issues you face daily. Network with over 140 of your peers and hear from the leading professionals in your industry. Leverage this community of data and analytics enthusiasts to advance your strategy to the next level.

Download the Agenda to find out more


Peter Dinham

Peter Dinham is a co-founder of iTWire and a 35-year veteran journalist and corporate communications consultant. He has worked as a journalist in all forms of media – newspapers/magazines, radio, television, press agency and now, online – including with the Canberra Times, The Examiner (Tasmania), the ABC and AAP-Reuters. As a freelance journalist he also had articles published in Australian and overseas magazines. He worked in the corporate communications/public relations sector, in-house with an airline, and as a senior executive in Australia of the world’s largest communications consultancy, Burson-Marsteller. He also ran his own communications consultancy and was a co-founder in Australia of the global photographic agency, the Image Bank (now Getty Images).

More in this category: QuickTime for Windows patched »



Recent Comments