Cybersecurity News in Asia

Can RCS improve on the antiquated SMS technology?

By Lim Jiun Kei, Head of Operator Partnership (APAC), Infobip | Wednesday, May 21, 2025, 10:17 AM Asia/Singapore

Learn how Rich Communication Services may help counter phishing and scams, while remaining mindful of its evolving risks and limitations.

As perpetrators of phishing tactics become increasingly adept at exploiting weaknesses in existing communication channels, the need for robust and secure messaging solutions is increasingly apparent.

The current landscape of cyber threats demands an urgent re-evaluation of digital communication infrastructure.

One promising approach lies in exploring enhanced messaging technology such as Rich Communication Services (RCS), which offer improved security features.

Vulnerabilities in existing channels

An inherent lack of robust sender verification is a major vulnerability. Scammers can easily impersonate legitimate businesses and government entities with alarming ease. They craft convincing fake websites and messages, often mirroring the look and feel of trusted brands, to trick unsuspecting users into divulging sensitive information like passwords, credit card details, and personal identification numbers.

The simplicity with which these scams can be executed highlights the urgent need for a more secure and reliable communication infrastructure. For example, RCS offer a potential path forward by incorporating richer features and enhanced security measures compared to traditional messaging channels.

Some relevant RCS benefits include:

The ability to incorporate visual elements and interactive options that add a layer of complexity to make it less easy for cybercriminals to spoof (although sophisticated attackers may still find ways to mimic legitimate messages). This deters less-sophisticated attackers and makes it easier for users to distinguish genuine messages from fraudulent ones. Verified business identities can provide visual confirmation that prevents spoofing and assure users that they are indeed communicating with a legitimate entity. (Note: RCS channel users should remain vigilant as no system is entirely immune to spoofing.)
Provisions for telecommunication providers to work with RCS channel aggregators to verify the legitimacy of brands and prevent unauthorized third-party impersonation. This ensures that only the approved aggregator with explicit brand authorization can carry a brand’s traffic, reducing some risk of impersonators engaging in spam or scams, and other malicious activities.
The provision of end-to-end encryption (offered by some RCS services) to protect sensitive information shared during conversations. Encrypted messaging in RCS channels ensures that only the sender and recipient can access the content.

Businesses evaluating messaging solutions may consider how RCS can be integrated into their communication infrastructure as part of a broader security strategy. As with any technology, ongoing vigilance and layered defenses remain essential.

Editor’s note: While RCS channels offer features that may improve security compared to traditional SMS communications, they are not immune to abuse and have their own set of vulnerabilities, including inconsistent encryption and ongoing phishing attempts via RCS platforms.

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

2024 Insider Threat Report: Trends, Challenges, and Solutions
Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
AI-Powered Cyber Ops: Redefining Cloud Security for 2025
The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
Data Management in the Age of Cloud and AI
In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper
Mitigating Ransomware Risks with GRC Automation
In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper

Middle-sidebar-banner

Case Studies

Meeting the business resilience challenges of digital transformation
Data proves to be key to driving secure and sustainable digital transformation in Southeast Asia.Read more
Upgrading biometric authentication system protects customers in the Philippines: UnionDigital Bank
An improved dual-liveness biometric framework can counter more deepfake threats, ensure compliance, and protect underbanked …Read more
HOSTWAY gains 73% operational efficiency for private cloud operations
With NetApp storage solutions, the Korean managed cloud service provider offers a lean, intelligent architecture, …Read more
CISOs can navigate emerging risks from autonomous AI with a new security framework
See how security leaders can adopt layered strategies addressing intent, governance, and oversight to manage …Read more

Featured

Unlocking cybersecurity’s hidden defenders to preempt cyber vulnerabilities

Featured

Blockchain exploits highlight cross-chain security flaws

Featured