| CPC H04W 12/72 (2021.01) [H04W 12/126 (2021.01)] | 16 Claims |
|
1. A method for detecting Subscriber Identity Module, SIM, swap fraud, the method being performed by a classifier entity, the method comprising:
monitoring subscriber update data request messages sent as part of an update data procedure between a first network entity and a second network entity in a mobile network;
determining that one or more of the subscriber update data request messages is associated with SIM swap fraud by verifying that the subscriber update data request messages fulfil a set of conditions pertaining at least to: an Mobile Station Integrated Services Digital Network, MSISDN, of a first subscriber entity in the mobile network within a first predefined timeframe being associated with more than one International Mobile Subscriber Identity, IMSI, and/or an IMSI of a second subscriber entity in the mobile network within a second predefined timeframe being associated with more than one MSISDN, wherein the one or more of the subscriber update data request messages pertains to a respective first move of MSISDNs of two or more first subscriber entities in the mobile network to be associated with one and the same IMSI of the second subscriber entity; and
performing, upon the set of conditions being fulfilled for the one or more of the subscriber update data request messages, an action according to which the IMSI of the second subscriber entity is associated with SIM swap fraud.
|