Chinese Student Jailed for Smishing: Operated Covert “SMS Blaster” in Car for Mass Phishing
A major investigation into large-scale SMS fraud has concluded in London, culminating in the conviction of Chinese student Ruichen Xiong, who has been sentenced to over a year in prison for orchestrating an elaborate smishing scheme.
Xiong operated sophisticated equipment concealed in the trunk of his Honda CR-V—an illicit mobile base station capable of intercepting signals from legitimate telecom providers and coercing nearby phones to connect. Once linked, his device disseminated mass phishing messages purporting to be from trusted institutions, including government bodies. These deceptive texts contained malicious links directing recipients to fraudulent websites designed to harvest sensitive personal and financial data, which were subsequently exploited for criminal gain.
The scheme was dismantled thanks to the coordinated efforts of the Dedicated Card and Payment Crime Unit (DCPCU), a specialized police force funded by the banking industry to combat financial fraud. Their collaboration with British mobile operators, the UK’s National Cyber Security Centre (NCSC), and regulatory body Ofcom was instrumental in exposing Xiong’s operation.
Investigators highlighted the alarming technical sophistication of the equipment used, underscoring the grave risk such devices pose in undermining both public trust and the integrity of communication networks. The inquiry revealed that, in just the past two years, mobile providers have blocked over 168 million fraudulent texts and flag nearly 50 million suspicious calls each month, continually evolving their defenses to stay ahead of cybercriminals.
The NCSC emphasized the importance of vigilance when receiving unsolicited messages, while Ofcom urged citizens to utilize the free 7726 reporting service to help telecom providers swiftly identify and dismantle fraudulent operations.
Following Xiong’s arrest, police detained seven additional suspects and confiscated seven similar smishing devices, revealing the systemic and expansive nature of the criminal network.
The UK government’s “Take Five to Stop Fraud” campaign plays a vital role in countering such crimes, encouraging the public to pause before disclosing personal information, verify the authenticity of messages, avoid unknown links, consult trusted sources, and exercise caution in response to suspicious offers.
Ruichen Xiong’s story serves as a stark reminder of the cunning tactics employed by cybercriminals and the critical importance of maintaining digital vigilance in an increasingly connected world.