SIM swap fraud.
In plain English
SIM swap fraud is when a scammer convinces your mobile carrier to move your phone number to a device they control, often using personal details gathered elsewhere. Once they have your number, they receive the one-time text codes many accounts send to verify logins and password resets, letting them take over email, bank, and other accounts. It is a reason text-message codes are the weakest form of two-factor security. Defenses include setting a PIN or port-freeze with your carrier and using an authenticator app or a hardware key instead of text codes where accounts allow it.
01Why it matters
Because a stolen phone number can unlock accounts that text one-time codes, SIM swap fraud turns text-based security against you, which is why an authenticator app or hardware key and a carrier PIN are worth setting up.
02The math, step by step
A scammer with some of your personal information persuades your carrier to activate your number on their phone. Your device loses service, and they use the text codes now coming to them to reset your bank password. A carrier account PIN and app-based codes rather than texts are what block this path.
03What this is NOT
It is not about the physical phone. In a SIM swap the scammer never touches your device; they move your phone number to theirs remotely. Your handset still works on wifi, but calls and texts, including security codes, go to them.
04Receipts
Every figure on this page is sourced to a primary document. Tap to open the original.