Macnica discloses methods and countermeasures for phishing scam "Smishing" that exploits SMS - Criminal ecosystem involving banks, credit card operators, payment services, EC operators, transportation companies, etc. and countermeasure approaches -

Macnica (Headquarters: Yokohama City, Kanagawa Prefecture, President: Kazumasa Hara, hereinafter Macnica), a total Services & Solutions provider in semiconductors, networks, cybersecurity, and AI/IoT, is a mobile phone short message service (Short Message). We are pleased to release the report ``Smishing Actual Status and Countermeasures,'' which summarizes the methods and countermeasures for ``smishing,'' which is a phishing scam that exploits phishing scams that exploit SMS.

"Smishing" is a type of phishing act and is a coined word from SMS Phishing. It is a method of sending fraudulent messages by misusing SMS, directing recipients to fake websites, and stealing personal information. The main targets are bank account information, e-commerce site account information, and information related to electronic payment and credit card usage.
In particular, the economic damage caused by credit card number theft exceeded 30 billion yen ^{* 1} last year, and countermeasures against smishing are an urgent issue. However, the reality is that companies are struggling to implement cybersecurity measures because they require different knowledge and understanding than conventional cybersecurity measures to protect IT assets.

This report examines changes in criminal tactics based on smishing tactics that have actually been observed. It explains the anti-smishing framework that can be specifically approached. In addition, we will provide clues to deter fraudulent SMS by clarifying the source and delivery route of fraudulent SMS that pretends to be a corporate brand.

Macnica will continue to provide technical support, research, and educational activities to strengthen countermeasures in order to realize a society where people can enjoy the convenience of the Internet with peace of mind.

*1: Japan Consumer Credit Association "Tally Results of Credit Card Fraudulent Use (News Release)"
https://www.j-credit.or.jp/information/statistics/download/toukei_03_g_220331.pdf　

[Report highlights]
■ Changes in attackers and expansion of crime base
We can presume that there are various attackers (scammers, phisher) behind smishing. Bank-affiliated smishing, which has been around since the dawn of time, has a high level of knowledge, operational levels, and organizationality in terms of targeting target banks and regions, methods of illegal withdrawals that break through authentication, and so on. In addition, it was presumed that there were multiple groups based on the tendency of smishing. Recently, there has been an increase in the number of scams targeting credit card and electronic payment information, mainly in EC and home delivery systems. The total amount of smishing is increasing, but at the same time, smishing such as "the brand of the fake site and the brand of the SMS text do not match" and "the Japanese text of the SMS text is unnatural" can be seen here and there. Compared to attackers who have been active in the past, it is speculated that people with lower operational levels have started to participate and that there is a division of labor. (Figure 1)

Figure 1: Example of low operation level

■ Smithing Crime Ecosystem
By deepening our understanding and consideration of the criminal ecosystem related to smishing, we will be able to take countermeasures in line with the overall picture of crime. Until now, the focus of phishing countermeasures has been the early detection and takedown of phishing sites, or de facto harmlessness through access blocking. These measures will continue to be effective in the future, but it is also important to combine upstream and downstream measures against crime to break the chain of criminal activity.

Figure 2: About the smishing crime ecosystem

■ Anti-smishing framework
The report defines a framework along the lines of smishing and explains what actions companies can take.

Figure 3: Anti-smishing framework

■ Contents
・Introduction
・About smishing
・Damage trends surrounding smishing
・Procedure of smishing
・The role and characteristics of SMS in phishing
・SMS delivery route and smishing method
・Identification of smishing distribution channels
・Tendencies of smishing and technical considerations
・Changes in attackers, expansion of crime base
・Smishing Crime Ecosystem
・Countermeasure approach

■ Where to download reports
https://www.macnica.co.jp/business/security/2022/report_01.html

■Related seminars
Macnica also actively provides information on attacks, vulnerabilities, and cybersecurity.
On July 28th and 29th, and August 1st and 2nd, we will hold Macnica techNowledge Daye 2022, a conference where you can learn practical tips on both DX and cybersecurity.
Please see the website for details on how to apply and details of the event.
URL: https://mnd2022.macnica.co.jp/?pcode=pressrelease_2

<Pickup session>

How to protect users and brands from unauthorized use of your services
Yahoo Japan Corporation Commerce Infrastructure Headquarters Security Department General Manager
Tomoko Fujita

phishing hunter
Nyan☆Taku

Anti-Phishing Council Deputy Steering Committee Chair
Japan Digital Design, Inc. Technology & Development Div. Head of TDD
Mr. Yusuke Karasawa

Cybersecurity big boss Dave DeWalt envisions the future
What is “Future Fusion/Cyber+”?
Night Dragon
Founder and Managing Director
Mr. Dave DeWalt

Cyber Security in the Post-Corona Era
～Supply Chain Risk and Life Cycle Security～
Chief Researcher, National Institute of Information and Communications Technology
Mr. Hiroshi Ito

*Company names and product names mentioned in this text are trademarks or registered trademarks of Macnica and each company.
*The information published in the news release (including product price, specifications, etc.) is current as of the date of announcement. Please note that the information may be subject to change without prior notice.