Your cellphone could provide a way for cybercriminals to access your financial accounts and gain access to your sensitive personal information and other accounts. All of this through your mobile number.
As soon as a criminal is able to change the SIM card connected to your mobile number, it gives him control over your mobile number — and he is able to receive the access code to your account. This gives him free rein to act as if it is you conducting transactions while you are completely unaware of what is taking place. In fact, no one will ever know that it was not you that withdrew all the money in your current account when it was withdrawn from your mobile app.
SIM card fraud is unfortunately rife in South Africa and mobile network operators are at a loss how to deal with this. In addition, the Rica legislation (Regulation of Interception of Communications and Provision of Communication-related Information Act 70 of 2002) places a positive obligation on mobile network operators to obtain certain data when a SIM card is sold.
The problem, however, is that mobile network operators make use of various entities to sell SIM cards and cannot be at all places at all times to monitor that this information is correct and, in fact, obtained. Whether we like it or not, fraud takes place, and this means that SIM swaps take place, there is no record of the person purchasing the SIM card and this allows for criminal activity to take place unchecked.
In a world with various pieces of legislation, the broader legislative landscape should serve the public interest. It is undoubtedly in the public interest to prevent or at least aim to limit cyberfraud and therefore collecting biometric information could very well serve said interest.
Icasa as the telecommunication regulator should support mobile network obligations and put forward solutions that benefit the industry and society in general. This might just be a workable solution. The future will shed light as to the possibilities when it comes to SIM card fraud and curbing that through biometric data.