• TCB13@lemmy.world
    link
    fedilink
    arrow-up
    2
    ·
    8 months ago

    If you require KYC for buying and changing cards then SIM swapping becomes impossible as nobody can get a new SIM card with your phone number by social engineering the carrier.

    • EngineerGaming@feddit.nl
      link
      fedilink
      arrow-up
      1
      ·
      8 months ago

      There can still be a bribed insider. And social engineering can get people to behave way off-protocol I guess.

      • TCB13@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        8 months ago

        Yes, but those things need to have procedures and employee authentication. If someone employee is found to be accepting bribes for SIM swaps then it should be fired on the spot and hold legally liable for all the damages - you can easily add this into a work contract. If a carrier doesn’t do this and doesn’t log those kinds operations then it’s just poor management and people shouldn’t buy services from it.