I read. I listen. I follow instructions. I think I’m fairly cautious but am I safe?

I access the internet. Just like the over 5.3 billion internet users. Or the 65% of the world’s population with internet access. The number is expected to reach 6.54 billion by 2025[1]. I own a smartphone. There are approximately 6.84 billion smartphones in the world [2]. That’s a lot people and devices connected to the internet. What do they use the internet for? A host of things. Social networking, online shopping, internet banking, emails, search and research, education, streaming movies/videos, gambling etc. I partake in a few of these activities.

Social networking. Particularly sending texts and photos on WhatsApp. I don’t do most of the other messaging apps like Facebook, Snapchat or Tik Tok. But I do do emails. There are 4 billion daily email users, and growing [3]. I am one of them. I prefer it particularly for work/formal correspondences. It’s easy to attach and save files, photos and videos. It’s also easy to highlight emails not yet read or requiring further attention. And, it’s equally easy to keep track of email trails.

Online shopping. I like the armchair shopping concept mainly because I can zoom into what I want, check a few options, compare prices, decide, and buy. Generally, the e-commerce platforms that I frequent are mostly alright except for some issues with dubious sellers (which is and should be the platform’s responsibility). Payment is quite effortless.

Internet banking. No traffic to contend with. No queues. Its 24/7. Transactions are relatively straightforward. There are various security measures in place like passwords, Transaction Authorisation Codes (TACs) and online mobile banking apps. There are downsides. Banks have been hacked. Accounts compromised. Passwords stolen. Money siphoned and/or laundered.

I’m routinely plagued with questions. What happens when technology and applications are 100% failsafe until they are not? These products are after all created by tech-savvy people and hacked by other more tech-savvy people, who are more efficient at finding loopholes and vulnerabilities. What happens when people inside, outside, related or connected to companies are persuaded to leak or share personal data for personal gain? What happens when motivations/reasons given are too alarming to decline/dismiss?

In Malaysia “… online crime cases increased by 37 per cent from January to November of 2023 compared to the same period the year before. The number of cases increased from 23,608 to 32,366, with a total loss of RM1.13 billion, a 46 per cent increase from 2022 [4]. That’s a lot of stolen/lost moolah. 

I’m aware about cybercrimes and scammers. I thought I was informed. Well, not quite. I was almost vished a few years ago. Vishing is short for “voice phishing,” which involves defrauding people over the phone, enticing them to divulge sensitive information[5]. The scammers/crooks impersonated court and police officers and made serious criminal allegations against me. It was pretty harrowing. “Those who fall prey to financial scams or fraud come from all walks of life including government servants, lecturers, doctors, and even successful businesspeople, either involving illegal activities or lured into fraudulent schemes that guaranteed lucrative returns[6].

So how? There are plenty of tips and advice on online fraud on the internet that are mostly useful.

I like these ones.

• Be suspicious.
• If it’s too good to be true, it probably is. Not just online.
• Give away as little personal data as possible.
• Ensure strong, impenetrable passwords for every online account. Where/when possible, put in place a two-factor authentication.
• Keep software updated – operating systems, programs and apps- however nagging and annoying the reminders are.
• Generally, stick to websites or links that start with an ‘HTTPS’ or the tune icon, i.e. the two horizontal lollipops. While ‘HTTPS’ can guarantee communications are encrypted, meaning/hopefully passwords and usernames cannot be stolen, it doesn’t guarantee that all secure websites are trustworthy. Hmm.

As a regular email user, I understand the advice below but I’m not always clear/sure on how to act/react.

• Don’t fall for phishing or smishing messages that contain ploys like fake deadlines or threats to block your subscriptions/accounts.
• Don’t click on dodgy messages that claim to come from legitimate companies.

Every month, I receive email requests to click on ‘secure’ website links to make payments, to remind me of billing dates and to confirm subscriptions/receipts/notices from my ‘legitimate’ internet service provider, utililty companies and bank/s.

This is true. I’ve had three different billing dates from my internet service provider for the months of Nov, Dec and Jan. Strange/suspicious, yes. I was wary about the changing/inconsistent billing dates. I emailed, texted and telephoned the sender.

The following email ensued. “The change of bill due date is permanent for all our customers.  We continually review our policies and processes and implement revisions to ensure operational and business excellence for better customer experience.”  Really?

Not helping. Not safe.