Scammers’ new domains dwindle - telcos


The number of domains used by digital scammers dropped significantly in the past three days after PLDT Inc. and Smart Communications, Inc. (Smart) blocked websites that lured people to fraudulent ‘job hiring’ schemes.

At the start of this SMS-based scam, the telcos' cybercrime investigation units identified a minimum average of 25 unique domains daily.

However, the numbers begun to dwindle, with only 14 new domains recorded from December 3 to December 5.

Not only were the new domains hitting a downturn, but even the number of blocked attempts made by users to these websites declined from 21,112 last December 3 to 8,902 on December 5.

To date, the teams have identified 192 suspicious domains and over 100,000 blocked attempts in total.

Despite the fraudsters’ new modus of herding potential victims to WhatsApp chat groups and hiring fluent Tagalog speakers as fake customer service representatives, the decreasing figures in the past three days showed Filipinos are now more wary of offers masked as employment opportunities.

“The scam operators used to engage the victims on a one-to-one basis, in which interested users are transacting with allegedly foreign individuals," according to Angel T. Redoble, the Chief Information Security Officer of PLDT and Smart’s Cyber Security Operations Group.

"Today, they have possibly been employing Filipinos to establish better communication with unsuspecting subscribers and luring them in the process,” he noted.

The fraudsters could have collected, sold, and taken advantage of personal data.

"One source of information theft is companies with hacked security systems. Another could be the data handling of online platforms that store consumer information. Also notorious for large databases of stolen information is the Dark Web, where there is a corresponding price for every personal data traded,” Redoble explained.

“The WhatsApp online messaging platform was also compromised this year, an incident where around two billion users were affected by the data breach.

However, these are all just possibilities, as data can come from multiple sources virtually,” he added.

PLDT and Smart have intensified their awareness campaign against SMS phishing by sharing safety tips on social media and disseminating advisories to their subscribers by means of text messaging.

Mobile users are urged to be vigilant at all times to avoid falling prey to such fraudulent schemes.