As we set off for the year, let’s take a moment to look back at December’s top SMS scams and data breaches both locally and abroad.
Top SMS Scams
The bulk of SMS scams impacting consumers in Australia and New Zealand last December fell into two categories: shopping scams and prize/lottery and survey scams.
Shopping Scams: Almost half of the SMS scam texts we detected this month fell into this category. It’s no surprise that scammers capitalised on December’s shopping frenzy to target unsuspecting victims. Posing as popular online stores or even creating offers (see image, right), scammers advertised fake deals, discounts, or product alerts. These messages often lead victims to fraudulent websites designed to steal personal and financial information. Remember: if you see a scam text, block the sender and delete the message immediately.
Prize/Lottery & Survey Scams: Just over 20% of December’s scam texts fell under this category. Victims often received messages (like the one shown in the image, left) claiming they had won a lottery or prize. These messages typically asked for sensitive information or payment to claim the “prize”. As always, think before you click. If you didn’t expect the message it’s likely a scam.
Top tips for avoiding SMS Scams
- Double-check the sender’s mobile number and email address. Even if it seems legitimate, think twice before taking any action.
- Reach out to the company’s customer service directly for help and support.
- Never click on dubious links or attachments! Stick to official websites and apps.
- If you’ve accidentally revealed private information, change your passwords immediately and inform the companies that scammers may contact pretending to be you.
Top Data Breaches
For December’s top data breaches, we have put the spotlight on two breaches, one local and one global, showing the cyber-criminals don’t discriminate who they target. They can be small companies, or they can be well known ones.
Ainsworth Game Technology: The infamous Medusa ransomware gang launched an attack on Ainsworth, a prominent Australian gaming technology company. Ainsworth manufactures many of the gaming machines found in local clubs, bars, and pubs. The attackers released sample data, including business documents, confidential business information, and personal employee data such as names, dates of birth, email addresses, bank account details, tax IDs, and passport information. The group claims to have stolen a staggering 852.4GB of data, affecting employees, business partners, and customers.
Krispy Kremes: Globally we saw, Krispy Kremes attacked by the Play ransomware gang leading to major systems disruptions across the US. The group attacked the companies online ordering system which contributes to about 15.5% of their sales. Whilst Krispy Kreme’s haven’t said much in relation to stolen data, the attackers have stated they’ve collected files containing private and personal data, client documents, payroll, budget, accounting, contracts, taxes, IDs, finance information and more.
How can i keep my data safe?
- Use strong, unique passwords: Avoid reusing passwords and combine letters, numbers, and special characters.
- Enable two-factor authentication (2FA): Add an extra layer of security by requiring a second verification step.
- Monitor your accounts: Regularly check bank and credit card statements for suspicious activity.
- Update software regularly: Keep devices and software up to date with the latest security patches.
- Be cautious with personal information: Carefully consider what information you share online and with whom.
0 Comments
You Might Also Be Interested In...
