Palo Alto Networks: Be careful of phishing attacks as SIM registration deadline nears

As the deadline for SIM registration approaches, more also taking advantage of the situation to scam the public.

File photo: SIM card

The rise of phishing as SIM reg nears the end

The DICT has said there will be no more extensions for the July 25 deadline for SIM registration.

Citing the latest data, Palo Alto Networks said that only 60.75 percent of the total 168 million SIM (Subscriber Identity Module) cards have been registered. This leaves around 40 percent of Filipino users at risk of deactivation and social engineering tactics such as phishing.

An unregistered SIM card "exposes users to potential deactivation of their mobile services, disrupting their communication capabilities," Palo Alto Networks said.

Additionally, as the deadline approaches, the risk of phishing attacks intensifies. Cybercriminals exploit SMS messages to deceive unsuspecting victims into divulging sensitive information, such as One-Time Passwords (OTPs), which grant them unauthorized access to accounts, it added.

Usually, scammers send text messages claiming to be from legitimate sources, like telecommunications companies, urging recipients to register their SIM cards by clicking on a link provided.

Due to fear of deactivation, users may fall into the trap and unwantedly share their personal details with cyber criminals.

To prevent such from happening, Palo Alto Networks listed ways to protect oneself against phishing attacks:

• Exercise caution when presented with unknown links: Be wary of links received from unfamiliar numbers or sources, especially those claiming to be from your telecom provider. DON'T CLICK suspicious links, as they may lead to fraudulent websites designed to steal your personal information.
• Scrutinize links for anomalies: CHECK for misspellings or unusual URLs in the links provided. Phishers often employ tactics such as using slight variations of genuine domain names to deceive users.
• Research official SIM registration procedures: FAMILIARIZE yourself with your telco’s SIM registration process.
• Stay informed on security measures: Some telecom providers and other organizations, such as banks, proactively block links via SMS to combat phishing attacks. STAY UP-TO-DATE with the security measures implemented by your trusted apps or organizations to enhance your protection.
• Leverage Multi-Factor Authentication (MFA): ACTIVATE MFA to have an extra layer of security, acting as a vital firewall for your devices during this heightened risk period.

Phishing attacks will persist as the SIM card registration deadline draws nearer. Cybercriminals' primary goal is to seize control of your number and exploit your OTPs to steal your money, warned Steven Scheurmann, Regional VP for ASEAN at Palo Alto Networks.

To stay safe, it's crucial to think before you click and remain vigilant whenever you need to share sensitive information. Embracing the Zero Trust principle and granting the least privilege to your personal data can significantly bolster your defenses against phishing threats, he added.

What do you think about this?