Perpetrators of SMS Fraud in London Underground Sentenced, Laundered £600,000

In London, a criminal case has concluded against a group of fraudsters who, for an extended period, ran a sophisticated phishing campaign targeting passengers of the London Underground. As the investigation established, the criminals used specially modified devices, so-called 'SMS blasters', hidden inside ordinary rolling suitcases. These suitcases were moved around various stations and tunnels of the Underground, allowing for the automatic distribution of thousands of fake text messages to phones within range. The message content concerned a supposed package delivery and contained a link redirecting to a spoofed website. Victims, thinking they needed to confirm or pay for the delivery, entered their personal data, addresses, and payment card details there. The information obtained this way was then used for unauthorized transactions. The funds gathered this way, which according to the prosecution's findings reached around £600,000, were 'laundered' through the trade of gift cards. This method of money laundering made tracking the cash flow difficult. As a result of the trial, which concluded in February 2026, the court sentenced four men involved in the scheme. Three of them received prison sentences, and the fourth received a suspended prison sentence. Details regarding the length of the sentences were not disclosed in joint press releases. The case shows the adaptation of classic cybercrime methods to physical public space, exploiting population density and mobility in the transport system. SMS-based fraud methods, so-called 'smishing', became a common tool for cybercriminals at the beginning of the 21st century, alongside the proliferation of mobile phones. In the United Kingdom, tens of thousands of such incidents are recorded annually, and authorities regularly warn about fake messages from courier companies, banks, and government offices.