alt Hacker NewsThis is why we need to prevent data breaches by not collecting the data in the first place as well as move to non-persistant identifiers for contacts. Nobody could scam you if you only used Signal usernames or SimpleX addresses because you just change them for each contact and they don't get breached because services don't ask for them.
This scam wouldn't have been possible if the scammer couldn't easily look up someone's name, pay a few dollars, and see where they live, their phone numbers, email addresses, and family members. It's not as much of a problem in Europe because of the GDPR, but in France their government cybersecurity is nonexistant so everything has been breached repeatedly so it's the same effect.
It's insane this type of data broker hasn't been banned and why I will never register to vote.
Every piece of data you give away is a liability, not just for the services tracking you, which some people might defend, but for cybercrime and data breaches.
I didn't downvote you, but I suspect you're getting downvoted because your recommendations wouldn't address the actual threat described in the article. This is the process the scam likely used:
1. Dial random phone numbers.
2. When someone answers, play a recording saying "we've kidnapped your daughter."
3. If a live human voice responds, transfer to a live operator who plays a muffled, staged recording of a panicked generic-sounding female voice.
4. Continue standard pig-butchering script.
I doubt the caller ever said the daughter's name. I don't think AI voice cloning was used. These kind of criminals know how to prey on people's instincts. It's not by compiling databases of accurate personal information. It's by scaring people with emotional, exigent, and plausible circumstances.
Even if 999 of 1,000 these calls are not to English-speaking people with a daughter who kind of sounds like the voice on the recording, the 1,000th is profitable enough for the scheme to continue.