Scams (simjacking)

[Bill Walker]

Just reading about this scam.
Somebody got hold of a guy's name, address, phone No, DOB. They applied for a service with a different Telco in his name with a new SIM but with his number.....Presto they soon had access to all his banking shit on his phone, poor sod lost $52,000 in two days. To God knows where.

The more financial stuff we do on our phones with app's etc. it seems the easier it is getting to scam people.
There are dozens of stories like this if you Google it.
Beware.

 

[Gaz in Zurich]

Did he not have any passwords?

 

[JASR]

Did he not have any passwords?

If he used computer (website) to access his bank, then probably his computer was compromised giving full access to the scammer of his computer (with all those details on), and his passwords (via a keylogger maliciously installed or by opening the list of passwords file that people have…)
The SIMM jacking is then just a way of getting past the multi-factor Authentication (the text message to get a unique code, when logging in).

If the bank has only ever been accessed online via an App (including setting up the online access), then either the banks app is dire (allowing easy re setup access via a new phone), or as before his passwords were stored somewhere