Back to Identity Theft Defense
11+fraud-fighter-pro

How it happens

Understand why nigerian identity theft vectors: (1) Social engineering (phone calls from 'bank staff').

In this lesson

How it happens is part of Identity Theft Defense. This preview shows how fraud-fighter-pro connects to everyday family decisions such as earning, saving, spending choices, goals, approvals, or parent-guided money conversations inside Progress Penguin.

Today’s money mission

Imagine this situation: Your old phone containing banking apps is sold without factory reset. The buyer recovers your banking data.

What you need to know

Nigerian identity theft vectors: (1) Social engineering (phone calls from 'bank staff'). (2) Phishing (fake GTBank/UBA websites). (3) Physical documents (discarded utility bills, account statements contain identity details). (4) SIM swap (most sophisticated — attacker calls telco, impersonates you, transfers your number, receives all your OTPs). Each requires a different protection strategy.

Real-life example

Real-life money moment: A SIM swap attack: the attacker calls your network provider, impersonates you using publicly available information (name, address, partial BVN), and gets your number transferred to their SIM. They now receive all your bank OTPs.

Progress Penguin connection

In Progress Penguin, the identity protection checklist includes a vulnerability scan. For each theft vector (data breach, social engineering, discarded documents, SIM swap), mark whether you are currently exposed — and the checklist shows your total risk profile. This lesson explains how theft happens; the checklist tells you which door is currently open.

Activity preview

Try the money challenge

Run the scenario through the detector. The warning sign to look for relates to: nigerian identity theft vectors: (1) Social engineering (phone calls from 'bank staff'). Can you spot it before DeeDee does?

Quiz preview

Identity theft often happens through:

Nothing preventable
Data leaks, social engineering, careless habits
Random luck only
Official government identity verification requests

Your old phone containing banking apps is sold without factory reset. The buyer recovers your banking data. Which security failure enabled this?

Failure to factory reset before selling — residual data on unsold storage can be recovered by sophisticated buyers even without your password.
The bank's security was breached as a general rule over the longer term when planning ahead
Your bank should have required biometric re-verification for the typical person
This is normal — no security risk from selling phones for the typical person as a reliable approach