ISC StormCast for Wednesday, October 18th, 2023
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS ISC Handlers
4.9 • 754 Ratings
🗓️ 18 October 2023
⏱️ 7 minutes
🧾️ Download transcript
Summary
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Hello and welcome to the Wednesday, October 18, 2023 edition of the Sands and its Storm Center's Stormcast. |
| 0:08.6 | My name is Johannes Ulrich and the time I'm recording from Jacksonville, Florida. |
| 0:14.2 | Quick diary today about fishing and spam via SMS, sometimes called smishing, |
| 0:24.7 | and how the landscape may be changing a little bit here. |
| 0:28.8 | The entire problem with automated, unsolicited SMS messages has become a pretty big deal, |
| 0:32.1 | and with that, lots of complaints to the FCC and to carriers. |
| 0:36.7 | So now there are some new regulations that I think I may have talked already about in the past, |
| 0:42.7 | but good reminder as some of this is starting to get into effect now, |
| 0:47.1 | that try to restrict some of the malicious use of SMS. |
| 0:52.9 | What this results in is that carriers will do more blocking and filtering |
| 0:59.5 | of SMS messages, in particular if they are originating from numbers that are not supposed to send |
| 1:06.6 | SMS messages. Earlier this year, the FCC released a directive stating that carriers must now |
| 1:14.9 | keep databases of phone numbers that will never send an SMS message, like, for example, |
| 1:21.6 | the old-fashioned landline, some government numbers are mentioned here, for example, and they must block any SMS messages that appear to come from these numbers. |
| 1:34.1 | And also, some carries in particular, T-Mobile has been kind of vocal about this, are starting to basically use sort of their own algorithms to block some SMS messages that they consider spam. |
| 1:48.0 | Now, one sort of characteristic that's being used here to identify spam is that some numbers will only send SMS messages and never receive them. |
| 2:00.4 | I think this may be behind a recent trend where you do get these SMS phishing emails |
| 2:06.9 | and then they ask you to reply first. |
| 2:10.6 | Now, also got a comment to the diary where one reader states that replying to an SMS message may actually activate links in the SMS message |
| 2:21.7 | on some systems and then also sort of make it less likely that future messages are sort of |
| 2:29.2 | automatically being filtered by the device. So this may affect filtering by the carrier as well as by the device. |
| 2:37.6 | The bad side of all of this is that this will certainly affect if you are sending, |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.