Cybersecurity experts warn that fraudsters are using fake mobile towers to downgrade 5G and 4G phones to 2G networks, sending deceptive SMS messages to steal personal and banking information.
 |
| Experts caution that fake mobile networks exploiting weaker 2G security systems are increasing the risk of phishing, identity theft and banking fraud worldwide. Image: CH |
Tech Desk — February 23, 2026:
A new wave of mobile fraud is raising alarm among cybersecurity experts, as criminals deploy portable devices to manipulate network connections and send deceptive text messages directly to nearby phones.
According to specialists, fraudsters are using tools commonly known as “SMS blasters” or “IMSI catchers” — devices capable of mimicking legitimate mobile towers. By broadcasting a stronger signal than nearby cellular infrastructure, these devices trick smartphones within a radius of up to 500 metres into disconnecting from authentic 4G or 5G networks and reconnecting to a fake, controlled network.
The technique becomes particularly dangerous when attackers force phones to downgrade from advanced 4G or 5G systems to older 2G networks. While modern mobile standards incorporate stronger encryption and authentication protocols, 2G technology contains comparatively weaker security safeguards. This vulnerability allows attackers to spoof sender identities, making fraudulent messages appear as if they originate from trusted banks, government agencies or utility providers.
Victims often receive urgent alerts claiming incomplete KYC verification, imminent bank account suspension, expiring reward points, unpaid electricity bills or undelivered courier parcels. Some messages even promote part-time job offers. Because the sender ID can display the name of a recognised institution rather than a phone number, recipients are more likely to trust the content.
Security analysts warn that clicking embedded links in such messages can lead to phishing websites designed to harvest sensitive data, including personal identification details and banking credentials. In more sophisticated cases, attackers may attempt to intercept one-time passwords (OTPs), compromising two-factor authentication systems and facilitating financial theft.
The emergence of SMS blaster-based fraud underscores a broader concern within global telecommunications security: legacy infrastructure remains a weak link. While many countries are rapidly expanding 5G coverage, 2G networks are still operational in numerous regions to support older devices and rural connectivity. This coexistence creates opportunities for exploitation.
Industry observers note that combating such threats requires coordinated action among telecom operators, regulators and device manufacturers. Disabling automatic fallback to 2G networks, strengthening encryption protocols and improving public awareness are among the proposed countermeasures.
For consumers, experts recommend avoiding links in unsolicited messages, verifying alerts directly through official apps or customer service channels, and reporting suspicious activity to telecom providers.
As mobile connectivity becomes ever more central to banking, commerce and identity verification, the misuse of downgraded networks highlights a critical reality: technological progress alone does not eliminate risk. Without securing older systems, the weakest signal may continue to pose the strongest threat.