モバイルネットワークの詐欺とセキュリティ　2024年展望

Kaleido’s new research, Mobile Network Fraud & Security: 2024 Outlook, shows that a combination of declines in channel use and the shutdown of circuit-switched networks will encourage fraudsters into newer forms of fraud, including attacks on APIs, and the use of AI to directly manipulate the telecoms network and create false subscriber identities. These false identities are a key reason why subscriber fraud will remain the single most damaging form of fraud in the coming years, accounting for nearly $11 billion in operator losses in 2028.

Traditional Channels to Remain a Threat Despite Declines

The report notes that while voice and SMS fraud will cause fewer material losses over time, the need to maintain backwards compatibility in the networks will keep older vulnerabilities from SS7 and Diameter protocols present long into the 5G era. As a result, Kaleido expects fraud from these channels to plateau rather than disappear altogether, with the rate of decline falling throughout the forecast period.

In the case of SMS, we expect to see declines because of increased adoption of RCS following Apple’s announcement of support for the standard. However, despite increased encryption, variable implementation will leave messaging open as a potential channel for fraudsters, keeping messaging fraud over $6 million in 2028.

Report author James Moar commented: “The security problems with RCS implementations are emblematic of many security issues within the telecoms space; flexibility and variation in standards implementation, while helpful to operators dealing with diverse infrastructure, continues to make high security an option, rather than a necessity.”

Telco APIs Widen Attack Surface

Kaleido notes that while standardised telco APIs will help with service delivery and in some instances provide a new set of anti-fraud tools, they also broaden the attack surface, giving more potential points of ingress and disruption to the telecoms network. With some of these APIs potentially being used for IoT use cases, telcos need to remain vigilant for DDoS and other automated forms of attack on their networks. Telcos’ inexperience in dealing with API security is a key reason why more advanced forms of attack will increase to almost $8 billion by 2028.

About Kaleido Intelligence

Kaleido Intelligence is a specialist consulting and market research firm with a proven track record of delivering telecom research at the highest level. Kaleido Intelligence is the leading research company addressing mobile roaming and connectivity services in its entirety, covering industry-leading market insights, data forecasts, historical viewpoints, competitive intelligence and operator market surveys.

Research is led by expert industry analysts, each with significant experience delivering market research and insights that matter.