That notification is fake The threat of "smishing" is evolving day by day

[NHK] A short short message pretending to be a home delivery delivery. Is there anyone who accidentally opened it? It is a fraud called "smishing".

A short text message masquerading as a courier's absence notification.

Is there anyone who accidentally opened it?

There is a high possibility that it is the entrance of a fraud called "smishing".

A new trick that speaks of familiar services that are born one after another.

What can you do to avoid being deceived?

(Interview team not deceived by digital / Chiharu Kinukawa)

I opened Smithing and looked it up

(*This is done after confirming the safety of the interview.)

What I introduced at the beginning was a short message that arrived on the reporter's iPhone.

"We have brought your luggage home because the customer was absent. Please check here."

I am a heavy user of online shopping.

I have a lot on my mind.

When you tap the listed URL

...

My browser started up and I was told that my account had a "security issue" and asked me to log in.

The word "APP Store" reminds me of Apple's service that I usually use to download apps.

When I close the notification...

A home page opens asking for an ID and password.

If there is an abnormality in security, the application may not be usable!

Must check!

Don't rush to log in.

Actually this.

It's a fake site, a "phishing site" to deceive you with information.

Phishing through SMS is a victim of phishing, so it is collectively called "smishing".

The same words and contact information as the real website are listed, and the design is also similar.

It's designed to make you think it's real, but if you accidentally enter personal information such as your ID and password, you'll be deceived by a criminal group.

Stolen information can be used for further crimes such as unauthorized access to accounts and fraudulent use of payment services.

What I received on that day was a "notice of absence of parcel delivery", but there were also other concerns such as "account was logged in illegally", "notice of unpaid bill", "suspension of service use", etc. There are various sentences to encourage.

In addition, some malware targeting Android smartphones tricks users into downloading malicious apps under the guise of a necessary procedure.

As a result of installing a fraudulent app, personal information in the smartphone is stolen, and a large amount of SMS is sent from the smartphone, causing damage to participate in smishing.

Number doubled last year

Smithing is on the rise.

Tobira Systems, which provides software to deal with nuisance calls and SMS that may be fraudulent, independently counts the number of smishing cases based on SMS received by users and information provided by the National Police Agency. doing.

As a result, the number of smishing observed in 2022 nearly doubled compared to 2021.

In 2021, it has increased nearly three times compared to the previous year, and it continues to increase year by year.

Diversifying modus operandi

Not only are the numbers increasing.

This is a smishing trick put together by this company.

In 2021, more than 60% of the cases indicated the absence of home delivery, but in 2022, it will be diversified.

Home delivery accounted for the largest number of cases, exceeding 30%, but 20% of cases involving major telecommunications carriers and 20% of cases involving public institutions were also observed.

In 2021, many home deliveries, which are still the most common, used the name of a real company such as Yamato Transport, Sagawa Express, and Japan Post, but in 2022, the mainstream will be to pretend to be an absence notice without including the company name. It means that

Regarding major telecommunications companies, there are many messages that pretend to be urgent, such as "non-payment of usage charges" and "unauthorized use of accounts", and it is a trick that anyone can be deceived if they pretend to be the service they are using.

Many of them are linked with payment services, so you need to be careful.

Those claiming to be public institutions were newly confirmed last year.

Since August last year, there has been an increase in attacks blaming the National Tax Agency, which lead people to phishing sites by saying, "There is a problem with the tax payment method," or "Requesting payment of unpaid taxes," and enter credit card information. There was a method of instructing the customer to pay with a prepaid card.

In addition, in relation to the new corona, last year, there was a trick to guide the new corona-related subsidies from the Ministry of Health, Labor and Welfare, and while travel and other movements were being voluntarily refrained, they pretended to be unsubscribed from transportation services. I also saw a trick.

New methods are expected to appear in the future, so caution is required.

Don't be fooled

The police are calling for "Do not open the URL described in the SMS" regardless of the content.

If you feel uneasy about the content of the text, it is important to close the SMS once, log in from the official app or website you usually use, and check the notification.

Companies also call attention

Yamato Transport, Sagawa Express, and Japan Post have clearly stated that they will not send short messages notifying them that packages have not been delivered.

In addition, we are calling attention so that companies and government offices whose names are used, including major telecommunications carriers, do not fall victim to smishing.

If you receive a suspicious SMS, first search and investigate by yourself, and that mindset will lead to your own protection.

NHK News Post

#Don't be deceived by digital

We are soliciting opinions from everyone to avoid being deceived, such as stories about their experiences.