Full Throttle Growth & Capital
Get in touch
Home About Services News & Insights Contact Get in touch
Cyber

Phone-Based Cyber Hacks Have Surged 400% Since 2018 — What You Must Know Now

Full Throttle Growth & Capital· · 4 min read

Phone hacks — including SIM swapping and number hijacking — have risen more than 400% since 2018. Your phone number is now one of the most valuable assets you own, and cybercriminals know it.

Research from U.S. law enforcement and cybersecurity analysts reveals that:

  • Phone-based hacks (SIM swaps, number hijacking) have surged more than 400% since 2018
  • Associated financial losses have grown over 467%
  • Mobile-focused fraud (smishing, unauthorized ports, OTP interception) has increased 150%+ in the last two years alone

By compromising a person's mobile number, attackers can bypass security protections, reset passwords, access bank accounts, impersonate victims and drain savings within minutes. As more services rely on phones for identity verification, the risks to individuals continue to escalate.

Why phone hacks are rising so fast

Phone numbers are now identity anchors. Banks, email providers, investment platforms and social networks use SMS for account recovery, two-factor authentication (2FA) and transaction verification. When attackers take control of your number, they gain immediate access to these systems.

Telecom weaknesses. Mobile carriers remain vulnerable to social engineering, insider fraud and poor identity-verification procedures.

Massive data breaches fuel impersonation. Attackers use stolen personal data to convincingly pose as victims during SIM-swap attempts.

Faster number porting. Modern eSIM technology enables rapid number transfers — which criminals exploit.

How a SIM-swap attack works

  1. The attacker gathers your personal data from breaches and social media
  2. They impersonate you with your mobile carrier
  3. The carrier transfers your number to the attacker's SIM/eSIM
  4. Your phone instantly loses service
  5. The attacker receives your texts and calls — including verification codes
  6. They reset your passwords and drain your accounts

How to protect yourself

  • Be wary of text messages with links. Treat unexpected links as suspicious by default.
  • Secure your email. Email remains the master key to your digital identity — protect it with strong, app-based 2FA.
  • Reduce personal information online. Attackers rely on your digital footprint.
  • Act immediately if your phone loses service. A sudden "No Service" signal can mean your number is being stolen — contact your carrier at once.

Where possible, move from SMS-based 2FA to an authenticator app or hardware key, and add a port-freeze or PIN with your carrier. Small steps, enormous protection.

← All insights

Keep reading

AI · Board·

AI Oversight is Now a Full-Contact Board Sport

AI is moving faster than most boards can govern it — and that gap is becoming a real risk.

Read →
Cyber · Strategy·

If Cyber Isn't a Growth Priority, You Don't Have a Growth Strategy

You can't “out-grow” cyber risk. Leaders who treat security as a growth enabler win; those who treat it as a cost center lose.

Read →
Recognition · Growth·

Julie Gilbert Named One of NY Weekly's Most Inspiring Entrepreneurs

Founder & CEO Julie Gilbert has been recognized among New York Weekly's 2026 Most Inspiring Entrepreneurs.

Read →

Let's partner

Turn insight into stock-accretive growth.

A direct, honest conversation with operators who have done it before.

Get in touch