All things mobile
Sim Swapping
SIM swapping poses a genuine threat. If your mobile provider does not hold accurate and current security details, a malicious actor could impersonate you to request a replacement SIM or a PAC code, thereby transferring your number to another network or reinstating your service on a device of their choice.
My recommendations are as follows:
- Configure a pin code on your sim card (Use a SIM PIN for your iPhone or iPad – Apple Support (UK)) – This is good, basic protection to have in place to prevent someone from using your sim card in the event of device theft
- Phone your mobile service provider and confirm that your details are up to date and ask them to ensure all types of alerts are configured on your account (i.e Define security questions that are not easily guessable)
- Ask your provider if they offer extra security features, such as account locks or porting protection.
- Avoid using SMS or Phone call authentication for logging into your accounts, opt for application-based MFA (I.e Microsoft Authenticator)
- If you suspect SIM swapping, contact your provider immediately to suspend your account (i.e if you completely lose service)
Encrypt your WhatsApp backups
WhatsApp allows you to back up your chats and media to either iCloud or Google Drive. To mitigate the risk of data exposure in the event your cloud account is compromised, ensure that these backups are encrypted.
Information on how to do this can be found here:
About end-to-end encrypted backup | WhatsApp Help Center
Keep your device up to date
Don’t delay that phone update – it contains important security updates
- Enable automatic updates where possible to ensure timely patching.
- Regularly check for updates to apps, especially those handling sensitive data (e.g. banking, messaging, authentication).
- Avoid unsupported devices — if your device no longer receives updates, consider replacing it.
Implement Call & SMS Blocking Capabilities
- Enable built-in spam protection on your device (e.g. Android and iOS have native call filtering features).
- Regularly review blocked numbers and update your block list.
- Be cautious with permissions — ensure the app does not have unnecessary access to sensitive data (e.g. contacts, messages).
- Avoid installing lesser-known call blocking apps without verifying their reputation and privacy practices.
Enable Device Anti-Theft Features
- Activate built-in anti-theft tools such as Apple’s Find My or Google’s Find My Device to locate, lock, or wipe your device remotely in case of loss or theft.
- Ensure multi-factor authentication (MFA) is enabled on your Apple ID or Google account to prevent unauthorised access.
- Set a strong device passcode or biometric lock (e.g. fingerprint, Face ID) to prevent physical access.
- Review recovery options — ensure your backup email and recovery phone number are secure and up to date.
- Enable Security Delay on the iPhone & Stolen Device Protection — About Stolen Device Protection for iPhone – Apple Support (UK)
- Hide your notifications from your home screen when your device is locked