Summary:
Two suspects were apprehended in the United Kingdom in connection with a criminal scheme utilizing a homemade mobile antenna to dispatch fraudulent text messages. Huayong Xu, 32, of Alton Road, Croydon, was charged on May 23 following an arrest made on May 9 in Manchester. City of London Police disclosed that this case marked a first in Britain, where an illicit telephone mast was utilized to disseminate phishing messages, circumventing mobile phone networks' systems for blocking suspicious texts. The suspects deployed thousands of messages impersonating banks and official organizations, aiming to deceive recipients into divulging personal information.


Exploiting known vulnerabilities in mobile communication standards, particularly in authentication protocols, perpetrators could readily dispatch phishing texts through fake base stations. While termed "homemade" by authorities, the setup involved consumer-grade radio equipment, capable of capturing IMSI details from nearby mobiles and then transmitting smishing messages. This modus operandi, though new to the UK, mirrors similar criminal activities observed in East Asia and Europe, including incidents in Vietnam, France, and Norway.

Security Officer Comments:
In 2022, a group of hackers used AI-powered SMS bombing attacks to target several major agricultural companies in the United States, causing disruptions to their operations and potentially compromising sensitive data. In October 2023, a food processing company in Europe was hit by an SMS bombing attack that originated from China. The attackers sent thousands of text messages per minute, overwhelming the company's phone systems and causing significant delays in production. These types of attacks can have serious consequences for the agriculture and food industries, particularly if they disrupt supply chains or compromise sensitive data related to crop yields, livestock management, or food safety.

Suggested Corrections:
To prevent and mitigate the impact of future SMS bombing attacks, consider implementing the following strategies based on previous incidents:

1. Rate Limiting: Implement rate limiting on phone systems to slow down or block excessive incoming calls and texts.
2. Anomaly Detection: Utilize AI-powered tools for anomaly detection to identify suspicious traffic patterns and alert security teams in real-time.
3. Incident Response Planning: Develop a comprehensive incident response plan that includes procedures for responding to SMS bombing attacks, such as:

• Tracing the source of the attack
• Isolating affected systems or networks
• Notifying stakeholders and law enforcement agencies

1. Employee Education: Educate employees on recognizing suspicious activity, reporting incidents promptly, and implementing measures to prevent future incidents.
2. Collaboration with Law Enforcement Agencies: Establish relationships with local law enforcement agencies and cybersecurity firms to facilitate swift response and investigation in the event of an attack.

Link(s):
https://www.theregister.com/2024/06/10/two_arrested_in_uk_over/