Watch Out for WhatsApp Scams!

Warning for everyone using WhatsApp in South Africa.

Scammers are becoming increasingly difficult to spot, with South Africa and other parts of the globe experiencing a rise in email, SMS, and WhatsApp scams.

WhatsApp is one of the most common forms of communication in South Africa, but, like emails and SMSes, it is highly prone to scams.

Scammers are a dime a dozen as digital communication becomes embedded in daily life.

Scam messages are now becoming almost indistinguishable from legitimate ones. The major problem, however, is the scale, sophistication and financial success of the criminals behind them.

Text-based scams on SMS and WhatsApp are becoming a thriving criminal enterprise, with scammers able to persuade users to disclose a wide range of personal information.

A typical scam involves users sharing their bank details after receiving fraudulent messages.

The Wall Street Journal recently reported that Chinese cybercrime syndicates generated over $1 billion via text-message fraud.

These messages range from fake government payment notifications to identity-theft operations and payment technology scams.

Although scams are a global issue, some tactics try to exploit local conditions, especially tax issues.

During rebate season in South Africa, taxpayers routinely receive fraudulent messages that appear authentic enough to convince them to “verify” banking details.

This gives scammers access to their SARS accounts, enabling them to change key details.

Like email phishing, SMS scams or ‘smishing’ are incredibly efficient and often achieve even higher success rates for criminals.

“The links are designed to lure a victim to a fictitious website, which is typically remarkably accurate, most often including correct contact information,” said the experts.

“One click on a fraudulent link and the dark web takes over, triggering keystroke tracking, password harvesting and the extraction of financial data.”

These details are then monetised using untraceable purchases of gift cards, online subscriptions, digital vouchers and other anonymous transactions.

Current-day scamming trends are so successful that the scamming groups can now openly sell the hardware upon which these scams can be executed via various technology platforms.

Cybercriminals, who infiltrate legitimate institutional databases, sell stolen databases containing users’ personal details and even banking credentials to organised crime groups.

“Affluent individuals and pensioners remain prime targets, with cybercriminals often purchasing stolen databases from compromised financial institutions and service providers,” said the experts.

“These datasets include personal information and, in some cases, banking credentials – shortening the criminals’ path to a successful attack. The primary defense remains vigilance.”

The golden rule is not to click on any links within messages without checking their legitimacy beforehand.

It is not advised to act on the messages as one may have done in the past. Contact details are often fake. Often, it is better to use known numbers instead, such as a local branch or an official office.

Users should also delete unsolicited messages, scrutinise unexpected requests for personal information, and confirm authenticity before taking action.

“In an environment where digital fraud is advancing faster than regulation, proactive behaviour remains the most effective safeguard,” said the experts.

“As cybercriminals continue refining their methods, awareness and caution are essential.”

• Source: BusinessTech