Fighting Cyber-Enabled Fraud 2025

51. Global Anti-Scam Alliance. (2023). Ten recommendations to turn the tide on online scams. https://www.gasa.org/turning- the-tide-on-scams 52. Council of European National Top-level Domain Registries (CENTR). (2022). CENTR publishes white paper on registration data accuracy in European national domain registries. https://www.centr.org/news/news/data-accuracy-paper.html 53. European Union (2022, December 27) Directive (EU) 2022/2555 of the European Parliament and of the Council of 14 December 2022 on measures for a high common level of cybersecurity across the Union, amending Regulation (EU) No 910/2014 and Directive (EU) 2018/1972, and repealing Directive (EU) 2016/1148 (NIS 2 Directive. https://eur-lex.europa. eu/legal-content/EN/TXT/?uri=CELEX:32022L2555 54. European Commission. (2025, May 5). eIDAS regulation. https://digital-strategy.ec.europa.eu/en/policies/eidas-regulation 55. World Economic Forum. (2025, July 10). Advancing systemic defence: What cyber leaders say about fighting phishing and fraud. https://www.weforum.org/stories/2025/07/rethinking-cybersecurity-a-systemic-approach-to-combat-cyber- enabled-fraud-and-phishing/ 56. United Nations Office on Drugs and Crime (UNODC). (2024). United Nations Convention against Cybercrime. https://www.unodc.org/unodc/cybercrime/convention/home.html 57. Abrams, L. (2019, August 14). Chrome and Firefox changes spark the end of EV certificates. BleepingComputer. https://www.bleepingcomputer.com/news/software/chrome-and-firefox-changes-spark-the-end-of-ev-certificates/ 58. Safeonweb.be. (n.d.). Safeonweb browser extension. Retrieved October 27, 2025, from https://safeonweb.be/en/ safeonweb-browser-extension 59. Europol (2025, October 27) Position paper on caller ID spoofing. https://www.europol.europa.eu/publications-events/ publications/position-paper-caller-id-spoofing 60. GSM Association (GSMA). (2025, 29 April). Baseline security controls version 5.0. https://www.gsma.com/solutions-and- impact/technologies/security/wp-content/uploads/2025/06/FS.31-Baseline-Security-Controls-v5.0.pdf 61. Fido Alliance. (2024, September 14). White paper: Displace password + OTP authentication with passkeys. https://fidoalliance.org/white-paper-displace-password-otp-authentication-with-passkeys/ 62. Finnish Transport and Communications Agency (TRAFICOM). (n.d.). SMS sender ID. Retrieved October 27, 2025, from https://www.traficom.fi/en/communications/broadband-and-telephone/sms-sender-id 63. NetBeacon Institute. (n.d.). NetBeacon reporter. Retrieved October 27, 2025, from https://netbeacon.org/reporting/ 64. Europol. (2025, August 13). Secure Information Exchange Network Application (SIENA). https://www.europol.europa.eu/ how-we-work/services-support/information-exchange/secure-information-exchange-network-application-siena 65. INTERPOL. (n.d.). Cybercrime collaboration services. Retrieved October 27, 2025, from https://www.interpol.int/en/ Crimes/Cybercrime/Cybercrime-Collaboration-Services 66. Anti-Phishing Working Group. (n.d.). The APWG eCrime eXchange (eCX). Retrieved October 27, 2025, from https:// apwg.org/ecx 67. GSM Association (GSMA). (n.d.). T-ISAC. Retrieved October 27, 2025, from https://www.gsma.com/solutions-and- impact/technologies/security/t-isac/ 68. Global Signal Exchange. (2025). League tables. https://www.globalsignalexchange.org/leaguetables Fighting Cyber-Enabled Fraud: A Systemic Defence Approach 30