Europe’s Phone Networks Flooded by Fake Calls

A surge of fraudulent calls is overwhelming phone networks across Europe, creating a major challenge for law enforcement and putting millions of citizens at financial risk. According to a recent Europol analysis, caller ID spoofing has become a primary tool for cybercriminals, facilitating a significant portion of the continent’s financial and social engineering crimes. The agency reports that these phone and text-based scams contribute to global losses estimated at a staggering EUR 850 million annually, representing about two-thirds of all reported fraud cases.

Criminals utilize Voice over IP services or specialized applications to make it seem like their calls originate from trusted entities. These can include banks, government departments, or even the victim’s own relatives. This deception is designed to establish a false sense of security, giving fraudsters the window they need to extract sensitive data or directly steal money.

The scale of the problem was starkly illustrated in Finland. Telecom provider Elisa discovered that before implementing new protective measures, a shocking 90% of incoming international calls on weekdays were fake. The majority of these fraudulent calls were disguised with local Finnish numbers and strategically placed during business hours. This example demonstrates how an entire national telecommunications infrastructure can be inundated with deceptive traffic, causing disruption for both private individuals and commercial enterprises.

For police forces, keeping pace with these criminals is an uphill battle. Caller ID spoofing is commonly used to impersonate legitimate companies in tech support scams, to coerce victims into making bank transfers, or to make hoax emergency calls, a dangerous practice known as “swatting.” These offenses frequently cross national borders, enabling organized crime groups to operate from jurisdictions where the likelihood of prosecution is low.

Exploiting legal and jurisdictional differences gives criminals a significant advantage. Some even operate “spoofing-as-a-service” platforms, renting out the necessary tools to mimic trusted organizations. This business model lowers the barrier to entry, allowing less technically skilled individuals or small groups to launch highly convincing fraudulent campaigns.

The fundamental imbalance remains: spoofing a phone number is relatively simple, but tracing the origin of these calls is exceptionally difficult. Europol emphasizes that this situation is no longer tenable for public safety across Europe.

A report compiling input from 23 EU member states identified widespread coordination and policy gaps hindering anti-spoofing initiatives. Law enforcement agencies pointed to insufficient collaboration with telecommunications companies and regulators, coupled with limited resources and ambiguous legal mandates. These conditions leave an estimated 400 million people vulnerable to spoofing-related fraud.

Investigators often report having no direct contacts within telecom firms and face difficulties obtaining the technical data required for call tracing. Divergent regulatory frameworks between countries further complicate cross-border investigations. In certain instances, telecom operators are reluctant to share information due to uncertainties surrounding their legal responsibilities.

The position paper advocates for the establishment of EU-wide technical standards to automatically identify and block spoofed calls. It also proposes creating a neutral, international traceback system capable of following call paths across different service providers.

On the policy front, member states are encouraged to harmonize their legal frameworks. This would clarify which authorities can legally issue traceback requests and specify what data can be shared. Clear definitions distinguishing legitimate from illegitimate spoofing would help telecom providers decide when to block traffic and when to allow it through. Although some nations are trialing authentication protocols like STIR/SHAKEN, a one-size-fits-all model may not suit every European legal and privacy context.

The inherently transnational character of spoofing attacks demands seamless information sharing and coordinated action among internet service providers, telecom operators, law enforcement agencies, and national regulators.

Even as defenses against caller ID spoofing improve, Europol cautions that criminals are already adapting their methods. SIM-based fraud, anonymous prepaid services, and callback scams continue to evolve. The agency recommends that telecom operators implement more rigorous “Know Your Customer” and “Know Your Transaction” procedures to verify user identities and spot the misuse of network resources.

Smishing, or phishing via SMS, remains a persistent threat that will require continuous updates to filtering and detection technologies to counter effectively.

These recommendations dovetail with the European Commission’s broader ProtectEU strategy, which seeks to enhance the Union’s ability to combat organized crime and safeguard citizens in both digital and physical spaces. Europol has identified caller ID spoofing as a critical enabler of cyber-facilitated fraud and insists that mitigating its impact must be treated as a shared European priority.

Fraudsters will persist in exploiting the inherent trust people place in communication systems until those systems are reconstructed on a foundation of verified identities and consistent oversight. Reaching that goal will hinge on the continued cooperation between public authorities, telecommunications providers, and the wider cybersecurity community.

(Source: HelpNet Security)