20.5k unique visitors in the last 3 days

South Africa Seeks to Reduce Number Port Fraud

The South African regulator may demand an extra verification code be added to the porting process, but not everyone agrees that phone hijacking is linked to bank fraud.

African telcos are increasingly embroiled in arguments about ‘SIM swapping’, where a criminal takes over a user’s phone account in order to assume their identity and then commit some other fraud. The problem has become the subject of headlines in South Africa, leading their national comms regulator, the Independent Communications Authority of South Africa, to conduct a public enquiry into number portability. The related report highlights the concerns about criminal behavior:

The risk of fraud and slamming is a widespread concern. In South Africa, those risks have resulted in litigations between mobile operators and there seems to be a consensus among the mobile operators that the process can be improved.

Many stakeholders indicated concerns with fraudulent port requests and slamming. An additional step to the existing process would be beneficial to confirm authorisation of the port by the subscriber. This would involve a code being sent to the subscriber at the start of the portability process which can then be used to authorise the port.

However, there were some concerns that the middlemen in the number porting process also represented a security weakness, and at least one party challenged the widespread argument that the hijacking of phone accounts has become an enabler of bank fraud.

Some respondents questioned whether the NPC [Number Portability Company] is the best party to send the message as there may be security issues. One respondent disagreed strongly with this approach, arguing that the mobile portability is relatively untouched by fraud, and that there is a lack of empirical evidence that bank fraud is linked to an increased porting activity.

The regulator seems to be leaning towards the adoption of an extra stage in the porting process where customers receive an additional code which they use to confirm their port request is genuine. You can read the enquiry report here.

Eric Priezkalns
Eric Priezkalnshttp://revenueprotect.com

During his career, Eric has been a Director of Risk Management for a national telco, the Chief Executive of the Risk & Assurance Group, a Chief Marketing Officer for a software business, a consultant, a public speaker and the publisher of Commsrisk since its launch in 2006. Look here for more about the history of Commsrisk and the role played by Eric.

The comms providers that Eric has worked for include Qatar Telecom, Cable & Wireless, T‑Mobile, Sky and Worldcom. In addition to his proficiency at speaking about the current scamdemic, Eric is also a qualified chartered accountant and a subject matter expert in consumer protection, enterprise risk management, fraud prevention, data integrity and billing accuracy. Eric was the lead author of Revenue Assurance: Expert Opinions for Communications Providers, published by CRC Press. He can be reached through the contact form on this website.

Related Articles

The Commsrisk Global Fraud Dashboard


Our Global Fraud Dashboard uses AI-powered search to collate, update and visualize data about scams and other network abuses from around the world. New charts are added each month. See it here.

Get Our Weekly Newsletter by Email