LG Uplus is now operating an AI-powered malicious app analysis solution to prevent the evolution of smishing crime techniques. LG Uplus (www.lguplus.com) announced on the 11th that it has implemented and is operating an ‘AI Malicious App Analysis Solution’ within its own customer damage prevention analysis system to effectively block smishing attacks that use ‘URL manipulation’ methods to bypass blocking measures by public institutions or telecommunications companies.
This solution has successfully prevented customer personal information theft by detecting approximately 62,000 cases of URL manipulation over about six months from August last year until last month. Smishing attacks occur when users are induced to click on malicious URLs in text messages that impersonate public institutions or financial institutions, and when users install malicious apps, their personal and financial information is stolen.
To prevent such smishing damage, LG Uplus operates a customer damage prevention analysis system in cooperation with the Korea Internet & Security Agency (KISA) and the Police Agency to analyze and block access to malicious URLs and apps. This system analyzes smishing URLs and malicious apps collected through customer reports and related agencies, blocking users from accessing these URLs when clicked.
However, response became more difficult as smishing criminal organizations began bypassing security systems by shortening and converting malicious URLs after recognizing the blocking measures, and increasingly disguising them as legitimate sites. In response, LG Uplus introduced an AI-based analysis solution to neutralize these ‘URL manipulation tricks,’ and after enhancement work, has been using it for actual blocking measures since August last year.
This AI solution not only analyzes the identity of manipulated URLs but also operates by precisely tracking the final destination these URLs connect to, determining whether they are phishing sites, and detecting the presence of malicious apps. Through this, it can effectively neutralize the response strategies of smishing criminal organizations.
LG Uplus plans to continuously strengthen its customer damage prevention analysis system. In particular, it will establish a text message testbed (a system that collects and analyzes spam messages using virtual phone numbers) to proactively detect smishing messages and block access to malicious URLs, while conducting more precise analysis of malicious apps.
Hong Gwan-hui, Head of Information Security Center at LG Uplus (CISO/CPO, Executive Vice President), stated, “Smishing attacks are becoming increasingly sophisticated, and attempts to bypass our defenses are also increasing,” adding, “We will further enhance LG Uplus’s customer damage prevention analysis system to create an environment where customers can feel secure from livelihood fraud crimes such as smishing.”