UCL Discovery
UCL home » Library Services » Electronic resources » UCL Discovery

'Hey mum, I dropped my phone down the toilet': Investigating Hi Mum and Dad SMS Scams in the United Kingdom

Agarwal, Sharad; Harvey, Emma; Mariconti, Enrico; Suarez-Tangil, Guillermo; Vasek, Marie; (2025) 'Hey mum, I dropped my phone down the toilet': Investigating Hi Mum and Dad SMS Scams in the United Kingdom. In: Proceedings of the 34th USENIX Security Symposium. (pp. pp. 1-22). USENIX: Seattle, WA, USA. (In press). Green open access

[thumbnail of Sharad_USENIX_StopScamsUK_SMS_Scams.pdf]
Preview
Text
Sharad_USENIX_StopScamsUK_SMS_Scams.pdf - Accepted Version

Download (3MB) | Preview

Abstract

SMS fraud has surged in recent years. Detection techniques have improved along with the fraud, necessitating harder-todetect fraud techniques. We study one of these where scammers send an SMS to the victim addressing mum or dad, pretend to be their child, and ask for financial help. Unlike previous SMS phishing techniques, successful scammers interact with victims, rather than sending only one message which contains a URL. This recent impersonation technique has proven to be more effective worldwide and has been coined the ‘hi mum and dad’ scam. In this paper, we collaborate with a UK-based mobile network operator to access the initial ‘hi mum and dad’ scam messages and related user spam reports. We then interact with suspicious scammers pretending to be potential victims. We collect 582 unique mule accounts from 711 scammer interactions where scammers ask us to pay more than £577k over three months. We find that scammers deceive their victims mainly by using kindness and distraction principles followed by the time principle. The paper presents how they abuse the services provided by mobile network operators and financial institutions to conduct this scam. We then provide suggestions to mitigate this cybercriminal operation.

Type: Proceedings paper
Title: 'Hey mum, I dropped my phone down the toilet': Investigating Hi Mum and Dad SMS Scams in the United Kingdom
Event: 34th USENIX Security Symposium
Location: Seattle, WA, USA
Dates: 13th-15th August 2025
Open access status: An open access version is available from UCL Discovery
Publisher version: https://www.usenix.org/conference/usenixsecurity25
Language: English
Additional information: This version is the author accepted manuscript. For information on re-use, please refer to the publisher’s terms and conditions.
UCL classification: UCL
UCL > Provost and Vice Provost Offices > UCL BEAMS
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Computer Science
URI: https://discovery.ucl.ac.uk/id/eprint/10197841
Downloads since deposit
11Downloads
Download activity - last month
Download activity - last 12 months
Downloads by country - last 12 months

Archive Staff Only

View Item View Item