Phone scams cost billions. Why isn't technology being used to stop them?
- Written by David Glance, Director of UWA Centre for Software Practice, University of Western Australia
World-wide, credit card fraud and other scams cost the public billions of dollars. Whilst credit card fraud is the clear leader in the sheer volume of money lost, “regular scams” still result in a significant amount of money being lost every year. Globally, credit card fraud resulted in losses of US $21.84 billion in 2015. The so-called “Nigerian scam”, usually perpetrated via email, totalled USD 12.7 billion in 2013. The overall losses are likely to be much larger however, as many scams go unreported.
Whilst scams that come in over email are increasingly being picked up by spam filters, around 45% of scams in Australia (and likely other countries) are by phone and text message.
Spam filters are increasingly using machine learning techniques to get better at identifying the wide range of scams that can arrive in inboxes. This is by far the most effective way of dealing with scams as the average member of the public has been shown to be still [amazingly]((http://www.geektime.com/2014/07/21/millions-of-victims-lost-12-7b-last-year-falling-for-nigerian-scams/) susceptible to scams of this type.
However, very little has been done with phone and text scams. This is surprising given that scammers have quite brazenly stuck to using the same number or area codes over significant periods of time.
A particular scam in Australia for example (using the number +61 2 8880 5602) was originally a scam with people claiming to be from the Australian Tax Office. The same people are now running a scam where they claim to be from a motor vehicle accident company wanting to pay compensation for an accident.
This number shows up on sites like “reverseaustralia” where complaints associated with the number are recorded. However, the number is still in operation and despite there being a government agency, the Australian Competition and Consumer Commission (ACCC), tasked with dealing with scams of this type, very little is done to tackle the scammers directly.
This seems hard to comprehend given that it would be relatively easy for government agencies globally to provide a centralised database of numbers associated with scammers. All mobile phones have the software available to check phone calls and text messages and could look up incoming numbers against this database and warn users if there was the slightest suspicion about the caller.
There are a few apps that are available that actually try and do this using their own crowdsourced information. Truecaller and Hiya for example try and alert a user when someone is calling using a number associated with a reported scam. Whilst these apps are definitely useful in protecting consumers, they are still not ideal. Government agencies like the ACCC in Australia and the Federal Trade Commision in the US receive reports of thousands of complaints from consumers with details of numbers associated with these complaints. It would be trivial for these agencies to make these numbers available to companies like Apple and Google directly to incorporate phone warnings directly into their software without the need for third parties.
The ACCC openly declares that its role is more to provide information than to enforce actual protection because of the difficulty in dealing with scammers.
Google and Apple should however be able to do more independently of these agencies. With the advent of machine learning techniques being used to analyse emails, it will be also possible to apply the same technology to phone calls. Certain techniques used by scammers are an absolute “tell” of a scam. A recent scam in the US, and spreading world wide, has involved the caller asking at some point “can you hear me” with the expectation of the victim replying “yes”. This reply is then edited into a recording in which the question is changed to one asking the victim if they wanted to go ahead with the purchase of a product or service. This evidence is then used to coerce the victim to pay.
But the list of other scam types is fairly consistent and so identifiable by software interpreting the conversation in real time.
Governments applying pressure on companies like Apple and Google to tackle this problem would be the first step in this process. Until then however, it is worth using one of the third party apps in the meantime.
Authors: David Glance, Director of UWA Centre for Software Practice, University of Western Australia