Mostrar el registro sencillo del ítem

dc.contributor.authorAgarwal, Sharad
dc.contributor.authorHarvey, Emma
dc.contributor.authorMariconti, Enrico
dc.contributor.authorSuarez-Tangil, Guillermo 
dc.contributor.authorVasek, Marie
dc.date.accessioned2024-10-04T09:19:26Z
dc.date.available2024-10-04T09:19:26Z
dc.date.issued2025
dc.identifier.urihttps://hdl.handle.net/20.500.12761/1854
dc.description.abstractSMS fraud has surged in recent years. Detection techniques have improved along with the fraud, necessitating harder-to- detect fraud techniques. We study one of these where scammers send an SMS to the victim addressing mum or dad, pretend to be their child, and ask for financial help. Unlike pre- vious SMS phishing techniques, successful scammers interact with victims, rather than sending only one message which contains a URL. This recent impersonation technique has proven to be more effective worldwide and has been coined the ‘hi mum and dad’ scam. In this paper, we collaborate with a UK-based mobile network operator to access the initial ‘hi mum and dad’ scam messages and related user spam reports. We then interact with suspicious scammers pretending to be potential victims. We collect 582 unique mule accounts from 711 scammer interactions where scammers ask us to pay more than £577k over three months. We find that scammers deceive their victims mainly by using kindness and distraction principles followed by the time principle. The paper presents how they abuse the services provided by mobile network operators and financial institutions to conduct this scam. We then provide suggestions to mitigate this cybercriminal operation.es
dc.language.isoenges
dc.title'Hey mum, I dropped my phone down the toilet': Investigating Hi Mum and Dad SMS Scams in the United Kingdomes
dc.typeconference objectes
dc.conference.date13–15 August 2025es
dc.conference.placeSeattle, WA, USAes
dc.conference.titleUsenix Security Symposium *
dc.event.typeconferencees
dc.pres.typepaperes
dc.type.hasVersionAMes
dc.rights.accessRightsopen accesses
dc.acronymUSENIX-Security*
dc.rankA**
dc.relation.projectNamePARASITEes
dc.relation.projectNameCOMETes
dc.relation.projectNameRYC-GSTes
dc.description.refereedTRUEes
dc.description.statusinpresses


Ficheros en el ítem

Este ítem aparece en la(s) siguiente(s) colección(ones)

Mostrar el registro sencillo del ítem