b'CYBER SECURITYleveraging multiple mobile-specific channels and disaster relief fraud, the ease of masking a including SMS, email, QR codes, and voicesender ID, using brief text and a shortened link to phishing (vishing)to exploit user behaviorsmask a non-typical URL makes it all too easy to and expand their attack surface. lure a user into clicking.And whereas email has always been the primaryZimperium also notes the geographical targeting vulnerability, new attacks are more likely toof mobile attacks, again as seen with fake toll target you by SMS or messaging app. This shiftmessages focusing on specific cities and states. follows increased nervousness when openingModern mishing campaigns frequently employ attachments or clicking links in email. All madegeolocation-based redirection at country or even worse by AI advances, that make it even harderat the city level, allowing for highly targeted to detect a threat on a small screen beforeattacks. This enables precise targeting of specific tapping. regions or organizations, complicates detection Not only does SMS carry text-based phishingby security researchers, increases campaign risks, but its also vulnerable to on-deviceeffectiveness through localization, [and] reduces malware hijacking 2FA codes in real time. Thedetection rates.U.S. government warns users to stop using SMSSome of this mandates new user training and codes for 2FA, and in recent days we have seenawareness, and also strict rules on link and SMS codes intercepted to hijack Gmail andattachment handling. But when it comes to Outlook accounts. Zimperium highlights SMSaccount credentials, there are now multiple Stealer malware, that is now compromisingreasons to shift from SMS to authentication apps accounts on more than 600 global services. or passkeys. As Microsoft has warned, we only The FBI, meanwhile, has warned users toget safer if legacy login methods are removed. delete all smishing texts given the alarmingSo its not just a case of providing new ways ramp-up in SMS attacks mimicking brands andto secure accounts, it needs the old ways shut local government agencies. As we have seendown.with recent FBI and police warnings into tollContinued on page 18Tracy L. Edwards, CFP,APMAFinancial Advisor CERTIFIED FINANCIAL PLANNER practitionerPlatinum Financial Solutions A financial advisory practice of Ameriprise Financial Services, LLC620.343.7937 702 Commercial St, Suite 1B, Emporia, KS 66801 tracy.l.edwards@ampf.com ameripriseadvisors.com/tracy.l.edwardsCertified Financial Planner Board of Standards Inc. owns the certification marks CFP, CERTIFIED FINANCIAL PLANNER and CFP (with plaque design) in the U.S.Ameriprise Financial Services, LLC. Member FINRA and SIPC.'