A new report from the Office for National Statistics (ONS) states that cybercrime is on the raise in England and Wales.
According to the report, adults aged 16 and over experienced an estimated 5.8 million incidents in the past 12 months, with 3.8 million of those classified as fraud and another 2 million as computer misuse incidents.
Regarding fraud, there were two types that dominated the results. Bank fraud was evident in 2.5 million incidents (an alarming 66% of the total), followed by “non-investment” fraud (1 million incidents; 28% of the total), which includes fraud related to online shopping or fraudulent computer service calls.
In addition, computer misuse incidents were dominated by computer viruses (1.4 million; 68% of the total 2 million), with the other 32% (600,000) being related to unauthorized access to personal information, including hacking.
The ONS states one out of every ten adults was a victim of cybercrime in the past year, with the chances of being victimized the same regardless of social class or location.
John Flatley, of the ONS, had this to say about the survey itself: “This is the first time we have published official estimates of fraud and computer misuse from our victimization survey, and ONS is leading the world in doing this. Together, these offences are similar in magnitude to the existing headline figures covering all other Crime Survey offences. However, it would be wrong to conclude that actual crime levels have doubled, since the survey previously did not cover these offences. These improvements to the Crime Survey will help to measure the scale of the threat from these crimes, and help shape the response.”
The message, however, is clear: cybercrime is on the rise, and more individuals are falling victim to new scams on a daily basis. Until we create a culture that ensures security and privacy are as important as the product or service itself, the problem will continue to rise.
FOR FULL REPORT Crime in England and Wales year ending Mar 2016
How you can stay safe online?
How to Protect Yourself From Caller ID Spoofing
Have you ever received unwanted calls from auto-dialers and telemarketers at a time when you did not want to be called? Has an auto-dialer or telemarketer ever tried to scam you? Have you noticed that the numbers of certain incoming calls don’t seem accurate?
If you have answered yes to any of these questions, you might have seen a spoofed caller ID. Anyone can spoof a phone number and make it seem like another person is calling. In the past, caller ID spoofing has been used to break authentication on voicemail. However, there are a number of ways to protect yourself when you think the caller ID has been spoofed.
WHAT IS CALLER ID SPOOFING?
Caller ID spoofing is the process of changing the caller ID to any number other than the calling number. When a phone receives a call, the caller ID is transmitted between the first and second ring of the phone. To transmit the caller ID, we use a technique called Frequency Shift Keying, which transmits the caller ID in a binary format. It is possible, during this part of the call, to transmit the caller ID we want instead of the true number.
HOW TO SPOOF?
There are multiple online services that offer caller ID spoofing for a price; some even offer a 30-second free trial, so you can try out the service. To make the service work, all you have to do is provide three pieces of information: the phone number you want to call from, the phone number you are calling, and the number you wish to show up in the caller ID.
Once all the information is provided the service will create a conference type phone call and connect you to the number you have specified. If you wanted to, you could potentially set up something to spoof caller ID yourself. All that you need to do is set up a host with Asterisk and then have a SIP trunk line.
Some service providers have been known to allow any number in the caller ID sequence sent out on Primary Rate Interfaces. This allows any company having a legitimate purpose change the caller ID to a number they specify. Unfortunately, it also allows anyone who owns a Primary Rate Interface to specify a number for malicious purposes.
CAN YOU BYPASS AUTHENTICATION?
Voicemail used to use caller ID as the only form of authentication, allowing anyone to spoof the phone number and listen to the messages. This was a very insecure policy and most voicemail services have been updated to protect against this attack.
ARE THERE WAYS AROUND CALLER ID SPOOFING?
The call-back method allows for some security when you think caller ID spoofing is being used. You could put the caller on hold, and then call the displayed number. If the number is busy or you reached the company they said they are calling from then they are potentially telling the truth.
However, they could be forwarding you to the company. At that point, when you are on phone with the company in question, you could ask whether or not the person is calling on behalf of the company.
The final check you could make is to enter the number in question in a search engine. This allows you to see if the company has the number on their website or if the company has mention of a scam that is going on. It also allows you to figure out what other people are saying about number.
REAL WORLD EXAMPLE
Earlier this year, a tax scam in Pottsville, PA, claimed to arrest victims if they didn’t pay outstanding tax debts. The caller ID that was spoofed showed that the originating call was from a Pennsylvania phone number: 570-622-1234. This number belonged to Pottsville City Hall, giving a false sense of security to anyone who received the call. The police warned of the scam and reminded Pottsville citizens to never give out any personal information over the telephone.
WHAT YOU SHOULD KNOW LEGALLY
It should be noted that spoofing a phone number with malicious intent is against the law. In Canada, the CRTC suggests suspected victims file a complaint if they believe the caller ID has been spoofed by a telemarketer.
The FCC also prohibits the use of using caller ID spoofing with intent to defraud, cause harm and wrongfully obtain anything of value.
If you ever question the number that you see on you caller ID, remember to be cautious. When anyone has the ability to call you as another person or company, it’s impossible to know his or her intentions. Make sure to take the time to verify the person on the other end of the phone.