Steps you can take to protect your telecom services
Your mobile phone and tablet may contain information that you want to protect from others. Therefore, you should be aware that there may be the same risks when browsing with these as when using your computer.
Page summary
Security for mobiles and tablets is important because they can contain information you do not want to share. It is crucial to be cautious with links in messages and emails and to use a passcode to protect the devices. In case of loss, the subscription should be blocked immediately.
Spoofing, where someone manipulates phone numbers for fraudulent purposes, is common and can give the impression that the bank or another organization is calling. It is best to hang up and never disclose account details or use BankID at someone else’s request.
Foreign scam calls and scam SMS are common fraud methods. For unknown numbers, you should never call back, and scam SMS can be reported to operators via the number 7726. Operators have also implemented measures to stop certain fraud calls from abroad. Being vigilant is the best protection against these types of fraud.
Never click on suspicious links in emails or text messages, and always use a passcode on your mobile device
Some important tips include never clicking on links in emails or messages you don’t recognise, setting a passcode to unlock your mobile phone or tablet, and immediately reporting any loss and blocking your subscription to prevent unauthorised use.
What is spoofing?
Spoofing is when the phone number displayed on your device does not accurately reflect who is calling. While spoofing a number is not illegal in itself (e.g. companies may display their main number even if a staff member is calling from an extension), using spoofing for fraudulent purposes is illegal and should be reported to the police.
Never log in with BankID at the request of someone who calls you
You may think you’re being contacted by your bank because the caller ID shows the bank’s number, but it could be a scammer trying to steal your money. They may claim your account is being compromised and ask you to log in with BankID. If you receive such a call, hang up immediately. Banks and other organisations typically do not call from customer service numbers and will never ask you to log in via BankID over the phone.
If you’re unsure, you can call the bank or organisation directly to verify, but never share your account details or log in unless you’re certain. Note that spoofed numbers may appear legitimate even when searched online. Scammers may also spoof private individuals’ numbers.
Most of these scams are carried out by organised crime groups abroad. Since November 2023, operators block calls from abroad that appear to come from Swedish mobile or landline numbers.
Never call back unknown missed calls from abroad
If you receive a missed call from an unfamiliar international number, do not call back. This scam, known as “wangiri,” aims to get you to return the call, which can result in high charges as the call is bounced between international towers.
Answering such calls while in Sweden does not incur charges, but calling back can be costly. If you answer by mistake, simply hang up.
Never click on links in suspicious text messages – they may be phishing attempts (smishing)
Scammers may send fake SMS messages that appear to come from your bank, delivery services, or shops. These messages may look authentic but are designed to trick you into clicking malicious links or logging in with BankID.
If you suspect a phishing SMS, forward it to the short number 7726 (which spells “SPAM” on your keypad). This helps operators investigate and block further messages. Be sure to forward the message rather than copy and paste it, as metadata is needed for analysis. Instructions for forwarding vary by phone model.
Sim-swapping or SIM card cloning – add a verbal security code
Sim-swapping is still rare in Sweden but may increase with the rise of eSIMs, which require only an activation link. If you use eSIM, add a verbal security code with your operator and avoid sharing personal information on social media. If your phone stops working unexpectedly, act immediately. Be cautious even with links from “customer service.”
Data retention rules for calls, texts, etc.
Operators are required to retain traffic data for law enforcement purposes. They may also store data temporarily for billing or inter-operator payments.
Customer service identification is for your protection
When contacting your operator, they must verify your identity before making changes to your subscription or signing new agreements. This may involve BankID or a code sent to your registered address.
Handling your subscriber information in directory services
Most subscription agreements include consent to share your name and number with directory services. You can withdraw this consent at any time to prevent your information from being shared.
Private number is an add-on service and may not transfer automatically when switching operators
A private number must be requested from your operator and ensures your number is not displayed to recipients. However:
- Your number will still be visible when calling emergency services (112).
- It may appear when sending SMS/MMS.
- It may not be hidden when calling from abroad.
- Private numbers should not be shared with directory services or others. If you switch operators, you must request the service again, as it may not transfer automatically. Not all operators offer this service, so check before switching.
How to protect your router
Both fixed and mobile broadband use a router. To improve security:
- Change the router name (SSID) and password to something not linked to your address.
- Create a separate VLAN network for smart devices and guest access.
- Many homes have smart devices connected via Wi-Fi, increasing the risk of intrusion. A separate network helps isolate these devices.
- Avoid clicking suspicious links online
- Clicking unknown links can allow hackers to access your device and steal saved information like passwords or credit card details.
If you suspect you’ve been hacked
Signs of hacking include unusual behaviour from connected devices, such as turning on/off unexpectedly or cameras activating on their own. Protect your router and devices with strong passwords and, if possible, two-factor authentication.