Cybersecurity News in Asia

Can RCS improve on the antiquated SMS technology?

By Lim Jiun Kei, Head of Operator Partnership (APAC), Infobip | Wednesday, May 21, 2025, 10:17 AM Asia/Singapore

Learn how Rich Communication Services may help counter phishing and scams, while remaining mindful of its evolving risks and limitations.

As perpetrators of phishing tactics become increasingly adept at exploiting weaknesses in existing communication channels, the need for robust and secure messaging solutions is increasingly apparent.

The current landscape of cyber threats demands an urgent re-evaluation of digital communication infrastructure.

One promising approach lies in exploring enhanced messaging technology such as Rich Communication Services (RCS), which offer improved security features.

Vulnerabilities in existing channels

An inherent lack of robust sender verification is a major vulnerability. Scammers can easily impersonate legitimate businesses and government entities with alarming ease. They craft convincing fake websites and messages, often mirroring the look and feel of trusted brands, to trick unsuspecting users into divulging sensitive information like passwords, credit card details, and personal identification numbers.

The simplicity with which these scams can be executed highlights the urgent need for a more secure and reliable communication infrastructure. For example, RCS offer a potential path forward by incorporating richer features and enhanced security measures compared to traditional messaging channels.

Some relevant RCS benefits include:

The ability to incorporate visual elements and interactive options that add a layer of complexity to make it less easy for cybercriminals to spoof (although sophisticated attackers may still find ways to mimic legitimate messages). This deters less-sophisticated attackers and makes it easier for users to distinguish genuine messages from fraudulent ones. Verified business identities can provide visual confirmation that prevents spoofing and assure users that they are indeed communicating with a legitimate entity. (Note: RCS channel users should remain vigilant as no system is entirely immune to spoofing.)
Provisions for telecommunication providers to work with RCS channel aggregators to verify the legitimacy of brands and prevent unauthorized third-party impersonation. This ensures that only the approved aggregator with explicit brand authorization can carry a brand’s traffic, reducing some risk of impersonators engaging in spam or scams, and other malicious activities.
The provision of end-to-end encryption (offered by some RCS services) to protect sensitive information shared during conversations. Encrypted messaging in RCS channels ensures that only the sender and recipient can access the content.

Businesses evaluating messaging solutions may consider how RCS can be integrated into their communication infrastructure as part of a broader security strategy. As with any technology, ongoing vigilance and layered defenses remain essential.

Editor’s note: While RCS channels offer features that may improve security compared to traditional SMS communications, they are not immune to abuse and have their own set of vulnerabilities, including inconsistent encryption and ongoing phishing attempts via RCS platforms.

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats
Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
2024 Insider Threat Report: Trends, Challenges, and Solutions
Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
AI-Powered Cyber Ops: Redefining Cloud Security for 2025
The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
Data Management in the Age of Cloud and AI
In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper

Middle-sidebar-banner

Case Studies

Bangladesh LGED modernizes communication while addressing data security concerns
To meet emerging data localization/privacy regulations, the government engineering agency deploys a secure, unified digital …Read more
What AI worries keeps members of the Association of Certified Fraud Examiners sleepless?
This case study examines how many anti-fraud professionals reported feeling underprepared to counter rising AI-driven …Read more
Meeting the business resilience challenges of digital transformation
Data proves to be key to driving secure and sustainable digital transformation in Southeast Asia.Read more
Upgrading biometric authentication system protects customers in the Philippines: UnionDigital Bank
An improved dual-liveness biometric framework can counter more deepfake threats, ensure compliance, and protect underbanked …Read more

Featured

Web browsers that rank lowest for privacy protection

Featured

The impact of APAC’s AI buildout on cybersecurity in 2026

Featured