On May 6, cybersecurity researchers revealed that 5G emergency systems are vulnerable to AI phishing that use inexpensive hardware where attackers send fake disaster alerts, tricking mobile users into clicking malicious links during moments of crisis.
Even though our smartphones seem to be our safe lifeline, safety measures such as earthquake alerts can become an exploitation tool. Knowing how these digital waves operate in the atmosphere, specialists are warning of lingering weaknesses.
AI phishing is still one of the major threats.
Rogue Signals Bypass Security
It’s all about how 5G networks handle public safety. To ensure everyone receives a life-saving message, public warning systems broadcast alerts to every phone in a specific area.
Crucially, these messages reach your device even if you aren’t actively using it. Because the system is designed for speed, it lacks a way to verify exactly who sent the message. This gap is increasingly exploited by AI phishing attacks to bypass traditional network filters.
Researchers proved this by setting up a controlled test using a standard laptop and a software-defined radio. They created a rogue signal that mimicked a legitimate cell tower.
When a phone latched onto this fake signal, it immediately displayed the alert.
According to experts, the alert appeared as soon as the device began listening to the rogue signal, before any authentication or secure network connection took place. This technique proves that phishing automation is becoming a tangible threat to mobile infrastructure.
If a phone was already on a real network, the attackers simply disrupted that connection, forcing the phone to jump onto the rogue one. Experts suggest that automated phishing is the next step for bad actors looking to scale out these disruptions.
Some organizations are developing scalable phishing testing solutions to combat this, by hardening their defenses before a real-world breach occurs.
Human Cost of AI Phishing Attacks
Beyond just causing panic, these forged alerts are the ideal delivery system for AI phishing. The study found that most phones automatically turn web links and phone numbers in these fake alerts into clickable buttons.
The rise of automated phishing prevention is now a priority for developers, as some devices even recognize look-alike characters from different alphabets to make a scam website look like a government portal.
The danger is highest when we are afraid. The Abu Dhabi Emergencies, Crises and Disasters Management Centre recently warned that exploiting fear and confusion among individuals leads to rushed digital decision-making.
In such scenarios, generative AI used for phishing attacks can create incredibly convincing messages in seconds. This trend toward automated phishing means that a single attacker can target thousands of devices simultaneously with minimal effort.
Maher Yamout, a lead researcher at Kaspersky, warns that technology utilizes artificial intelligence to automate and personalize phishing attacks to make these traps harder to spot.
“We’re seeing attackers use AI to automate reconnaissance, generate highly convincing phishing messages and create deepfake content at scale,” Yamout said.
As AI phishing incidents grow more complex, security teams are turning to AI-generated phishing attack simulators to train users.
Ultimately, the fight against phishing automation requires a cross-check system where your phone verifies an alert with neighboring towers. Until then, the threat of automated phishing remains a significant hurdle for global digital safety.
Inside Telecom provides you with an extensive list of content covering all aspects of the tech industry. Keep an eye on our Cybersecurity sections to stay informed and up-to-date with our daily articles.