Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    Simjacking is Still a Problem, British Food Writer Lost £5,000

    MonroeBritish food writer Jack Monroe lost £5,000 due to a simjacking attack, the BBC reports. In a series of tweets, Monroe said someone had taken over her phone number and used the access to steal months worth of earnings from her bank account. She added that her payment card details and PayPal information were apparently stolen during an online transaction.

    Simjacking occurs when an attacker calls a mobile operator and impersonates a target in order to trick the operator into porting the target’s phone number to the attacker’s device. The attacker can then exploit anything the number grants them access to, and can bypass SMS-based two-factor authentication. In Monroe’s case, the attacker was able to trick the operator into switching the phone number by providing Monroe’s birth date, which is available on Wikipedia.

    It’s worth noting that Monroe did have precautions in place. She stressed that she is “absurdly paranoid about security,” and says she uses two-factor authentication on everything, along with unique, complex passwords. Simjacking can bypass these safeguards however, since it doesn’t target the victim directly and takes advantage of a human employee at a mobile phone company.

    As technical defenses improve, social engineering attacks will increase. Even if your organization has the most advanced defenses in place, your security posture is still severely lacking if one of your employees can be tricked into giving the attacker what they want. New-school security awareness training can ensure that your employees have the skills to resist these attacks. The BBC has the story: https://www.bbc.com/news/technology-50043230

     

    Return To KnowBe4 Security Blog

    Request A Quote: Security Awareness Training

    products-KB4SAT6-2-1New-school Security Awareness Training is critical to enabling you and your IT staff to connect with users and help them make the right security decisions all of the time. This isn't a one and done deal, continuous training and simulated phishing are both needed to mobilize users as your last line of defense. Request your quote for KnowBe4's security awareness training and simulated phishing platform and find out how affordable this is!

    Get A Quote Now

    PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

    https://www.knowbe4.com/kmsat-security-awareness-training-quote

    Topics: Social Engineering, Security Awareness Training, Security Culture

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog


    Security Awareness Training
    Blog RSS Feed
    Comprehensive Anti-Phishing Guide
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest about social engineering

    Subscribe to CyberheistNews