20.5k unique visitors in the last 3 days

Sixth Suspect Arrested for Massive Paris IMSI-Catcher SMS Scam

An old ambulance was one of the vehicles used by gang members to drive IMSI-catchers around the city.

Following the five arrests that occurred in February, Agence France-Presse reports that a sixth suspect has been indicted for participating in a scam where smishing messages were sent to mobile phones using IMSI-catchers driven around Paris.

The sixth member of the gang was born in 1997 and arrested in Montpellier on charges of fraud and attempted fraud in an organized gang, and unauthorized possession of a device to intercept computer data. He was remanded in custody on Friday.

The first IMSI-catcher was found by chance in late December when gendarmes stopped a woman driver who was intoxicated with drugs before noticing radio antennae on her back seat. A wire led to equipment in the trunk of the car that was initially mistaken for a bomb, but later identified as an IMSI-catcher. A second IMSI-catcher belonging to the gang was discovered in February; it was carried in an old ambulance that had been used to circulate the northern and western suburbs of Paris. Investigators have determined that 400,000 Parisians received SMS messages that encouraged them to submit their personal data to a bogus health insurance website.

SMS has never been a secure channel for communication, but you would not know that from the way many so-called security experts demand ever-increasing use of SMS messages for the sending of passwords. Meanwhile, the cost of IMSI-catchers has fallen, making their use for scams more viable than ever before. These revelations about widespread systematic abuse of IMSI-catchers in Paris should serve as a wake-up call for those elements of the infosec community who underestimate the myriad ways that criminals can exploit SMS.

Eric Priezkalns
Eric Priezkalnshttp://revenueprotect.com

During his career, Eric has been a Director of Risk Management for a national telco, the Chief Executive of the Risk & Assurance Group, a Chief Marketing Officer for a software business, a consultant, a public speaker and the publisher of Commsrisk since its launch in 2006. Look here for more about the history of Commsrisk and the role played by Eric.

The comms providers that Eric has worked for include Qatar Telecom, Cable & Wireless, T‑Mobile, Sky and Worldcom. In addition to his proficiency at speaking about the current scamdemic, Eric is also a qualified chartered accountant and a subject matter expert in consumer protection, enterprise risk management, fraud prevention, data integrity and billing accuracy. Eric was the lead author of Revenue Assurance: Expert Opinions for Communications Providers, published by CRC Press. He can be reached through the contact form on this website.

Related Articles

The Commsrisk Global Fraud Dashboard


Our Global Fraud Dashboard uses AI-powered search to collate, update and visualize data about scams and other network abuses from around the world. New charts are added each month. See it here.

Get Our Weekly Newsletter by Email