Fraud & Identity Fraud & Identity


Fraud & Identity Featured Article


Australian Compliance Employee Posts Hacking Directions

July 31, 2017

We in the United States have been hearing a lot about leaks lately. But it appears as if things down under are getting a little leaky as well lately.

According to a recent posting by ABC Australia, an employee of the Australian Tax Office compliance agency recently published details about how to hack mobile phones in a posting on LinkedIn.


The posting provided step-to-step directions on how to bypass passwords and obtain data even on phones with dead batteries or no SIM cards, the report said. Using this blueprint, reports indicate, bad actors could access phone call records and text messages, and retrieve deleted data.

Publishing these details is a problem because it can encourage hacks and because, ABC said, it reveals the ATO’s fraud investigation tactics. In fact, as The Guardian reported, the online guide “suggests the ATO is hacking phones as part of its fraud investigations, although the agency requires a warrant or permission from the owner to do so.”

ABC was the first media outlet to recognize and report on the posting of these guidelines. When ABC contacted the Australian Tax Office about the matter, it said, the ATO was unaware of the online guide.

But ABC reported that the online guide was taken offline within an hour of the media outlet contacting the ATO. The ATO employee was not fired or suspended for posting the guide, ABC added.

The Guardian reported comments from Michael Keenan, justice minister, saying: “Obviously we are very concerned about that. But we do have very robust systems within the ATO to detect that.”

Keenan added that “the ATO, like other compliance agences in Australia, do need to keep up with the way technology evolves and they do need to exploit technology like other agencies do.”

The Guardian also noted that this is just the latest public relations blunder the ATO has faced recently. Deputy commissioner Michael Cranston also recently resigned from the ATO over an alleged tax evasion scheme involving his son.




Edited by Maurice Nagle

Article comments powered by Disqus






Industry Insights

(MobileID) Proactive Fraud Prevention

Interconnect-related fraud such as International Revenue Share Fraud (IRSF) and PBX hacking fraud continue to be a billion dollar problem to the telecom industry.

(Defender Shield) Defense solutions for the modern SMS ecosystem

SMS is a ubiquitous communication method for person-to-person (P2P) text messaging, which has been in use globally for nearly 20 years.

(Defender Shield) Preventing Grey Routes and the Multi-billion dollar Threat

The convenience of mobile messaging has brought communication efficiency to billions of consumers worldwide. As is often the case with widely accepted technologies; however, convenience can provide a vulnerable gateway to fraudulent activity.

Product Documents

Asset Protect

While unlimited or high-volume voice and SMS plans offer great value to subscribers, sometimes fraudsters exploit these plans to avoid paying termination and interconnect fees.

Defender Shield

In a world with ever-increasing Application-to-Person (A2P) messaging needs and competition, improving customer satisfaction and eliminating revenue leakage is key for protecting SMS profits.

MobileID

Accurate and cost-efficient routing of voice calls and SMS is critical. Unfortunately, gathering reliable routing data on ported numbers and keeping up with constant changes in number plans is expensive and time-consuming.

Fraud Solutions

Communications fraud is a $20B annual global problem and growing. Companies are looking for peace of mind so that their business and their customers are protected from the onslaught of technology crime that is damaging their reputations and their balance sheets.