"Phishing Boxes Flooded into US, Spewing Out Millions of Deceptive Texts"

Scammers Exploit Industrial Routers to Blast Phishing Messages In a disturbing trend that has been ongoing since 2023, scammers have been using unsecured cellular routers in industrial settings to blast SMS-based phishing messages, according to researchers. The routers, manufactured by China-based Milesight IoT Co., Ltd., are being exploited to send large volumes of malicious texts, targeting unsuspecting individuals. The use of these routers as a delivery vector is considered unsophisticated yet effective, according to security company Sekoia. "These devices were designed for industrial use, but they have been compromised by scammers who are using them to send phishing messages," said a spokesperson for Sekoia. "It's a classic case of exploiting vulnerabilities in IoT devices." The Milesight routers are rugged Internet of Things (IoT) devices that use cellular networks to connect traffic lights, electric power meters, and other remote industrial devices to central hubs. They come equipped with SIM cards that work with 3G, 4G, and 5G cellular networks and can be controlled by text message, Python scripts, and web interfaces. According to researchers, the scammers are using these routers to send large volumes of phishing messages, which are often convincing and designed to trick recipients into revealing sensitive information. "These messages are not just simple scams; they're sophisticated attacks that use social engineering tactics to manipulate victims," said a researcher at Sekoia. The use of industrial routers as a delivery vector is not new, but the scale and sophistication of these attacks have increased significantly since 2023. Researchers believe that the scammers are using these devices because they are often left unsecured or poorly configured, making them easy to exploit. While it's difficult to estimate the exact number of victims affected by these scams, researchers warn that the use of industrial routers as a delivery vector is becoming increasingly common. "We're seeing more and more cases where scammers are using IoT devices to send phishing messages," said the Sekoia spokesperson. "It's a wake-up call for organizations to review their security protocols and ensure that their IoT devices are properly configured and secured." In response to these findings, Milesight IoT Co., Ltd. has issued a statement saying that they take the security of their products seriously and are working with researchers to address the vulnerabilities. As the use of industrial routers as a delivery vector continues to grow, experts warn that individuals and organizations must be vigilant in protecting themselves from phishing attacks. "It's essential to stay informed about these types of scams and take steps to protect yourself," said the Sekoia researcher. "We urge everyone to review their security protocols and ensure that they are properly configured to prevent these types of attacks." Background The use of industrial routers as a delivery vector for phishing messages is not new, but the scale and sophistication of these attacks have increased significantly since 2023. Researchers believe that the scammers are using these devices because they are often left unsecured or poorly configured, making them easy to exploit. Current Status and Next Steps Researchers are working with Milesight IoT Co., Ltd. to address the vulnerabilities in their products. In the meantime, individuals and organizations must be vigilant in protecting themselves from phishing attacks. Experts warn that it's essential to stay informed about these types of scams and take steps to protect yourself. Attribution This article is based on information provided by security company Sekoia and researchers who have been tracking these types of scams. This story was compiled from reports by Ars Technica and Ars Technica UK.