Ofcom cracks down on mobile network loophole used to intercept text messages
22 April 2025, 16:14
The regulator said a technical loophole in mobile networks could allow criminals to intercept security codes being sent to mobile users via SMS.
Ofcom has said it is taking “world-leading” action to prevent criminals maliciously using mobile networks to intercept text messages, including bank security codes.
The regulator has announced a ban on the leasing of special types of phone numbers known as Global Titles, which are used by mobile networks to support services by ensuring messages and calls reach the intended recipient.
The telecoms regulator said that, until now, Global Titles could be leased out to third parties, leading to a technical loophole whereby criminals could potentially get hold of and intercept messages, including security codes sent to bank customers via SMS.
📵 We're closing a technical loophole in mobile networks that criminals use to intercept calls, texts, and track people’s locations.
Our new rules crack down on this practice and protect UK mobile users from serious privacy and security risks.
🔗 https://t.co/oeh9eOzu7m pic.twitter.com/2QzCP9cwGD
— Ofcom (@Ofcom) April 22, 2025
In response, Ofcom said it is now banning the leasing of Global Titles.
Natalie Black, the regulator’s group director for network and communications, said: “We are taking world-leading action to tackle the threat posed by criminals gaining access to mobile networks.
“Leased Global Titles are one of the most significant and persistent sources of malicious signalling.
“Our ban will help prevent them falling into the wrong hands – protecting mobile users and our critical telecoms infrastructure in the process.”
Ofcom said the risk posed by the leasing of Global Titles has been recognised by organisations including the UK’s National Cyber Security Centre (NCSC), but that so far, industry-led efforts to address the issue have not been effective.
It said this is why it is stepping in to introduce the leasing ban.
NCSC chief technical officer Ollie Whitehouse said: “Today’s announcement marks an important step in the support of our mission to make the UK the safest place to live and work online.
“This technique, which is actively used by unregulated commercial companies, poses privacy and security risks to everyday users, and we urge our international partners to follow suit in addressing it.
“As the UK’s national technical authority for cyber security, we also congratulate Ofcom on their continued global leadership in this critical area.”
Rocio Concha, director of policy and advocacy at consumer group Which?, said: “Fraud is the most common crime in the UK so it’s great to see Ofcom take action to close loopholes in mobile networks.
“For every week the Government fails to take action, victims lose millions to fraudsters and organised crime groups.
“Lord Hanson, the fraud minister, must ensure that the Government ends the fragmented approach to scam prevention and outlines a more co-ordinated approach across the tech, banking and telecoms sectors in its upcoming fraud strategy – stopping scammers in their tracks before they have a chance to part people from their hard-earned cash.”
