VYPR
breachPublished Jul 13, 2026· 1 source

UK Charges Five Suspects in Russian Coms Caller ID Spoofing Scheme

British authorities have charged five individuals in connection with Russian Coms, a sophisticated platform used to facilitate over 1.8 million fraudulent calls worldwide.

The UK's National Crime Agency (NCA) has brought charges against five individuals allegedly involved with Russian Coms, a large-scale caller ID spoofing service that enabled criminals to conduct millions of scam calls globally. The accused are Ayoub Sehailia, Zakkaria Sehailia, Usman Din, Denis Ozmus, and Fadila Salem, all from London. They face charges including conspiracy to supply articles for use in connection with fraud and transferring criminal property, with Zakkaria Sehailia also charged for failing to provide phone passcodes.

Launched in 2020, Russian Coms evolved from a handset-based service to a web application, both of which were actively marketed and sold to malicious actors. The platform allowed users to mask their true identity by spoofing caller ID to display numbers belonging to legitimate entities such as financial institutions, telecommunications companies, and law enforcement agencies. This tactic was instrumental in deceiving victims into divulging personal information and transferring funds.

The NCA's investigation led to the takedown of the Russian Coms platform in March 2024. Prior to its shutdown, the service had been linked to tens of millions of pounds in financial losses and affected an estimated 170,000 victims. Criminals paid between £1,200 and £1,400 in cryptocurrency for six-month contracts to access its "flagship" services.

Until its disruption, Russian Coms facilitated over 1.3 million calls to more than 500,000 unique phone numbers across 107 countries, including the UK, US, and France. Victims reportedly lost an average of over £9,400 each. The platform was promoted on social media channels like Telegram, Snapchat, and Instagram, offering features such as encrypted calls, a web phone, no-logs policies, international calling, voice-changing capabilities, and 24/7 support.

The primary modus operandi involved spoofing bank phone numbers to gain victims' trust. Scammers would then convince targets that their accounts were compromised and persuade them to move their money to "secure" attacker-controlled accounts, ultimately leading to theft. The NCA's action is part of a broader international effort to dismantle such criminal infrastructure.

The takedown of Russian Coms was a significant component of "Operation Henhouse," a wider initiative that resulted in 290 arrests across the UK. This operation targeted individuals involved in various forms of organized fraud facilitated by such illicit platforms. The NCA indicated that further actions would be taken against those who utilized Russian Coms for fraudulent activities.

This case highlights the critical role of caller ID spoofing services in enabling large-scale financial fraud and the challenges law enforcement faces in tracking and prosecuting the individuals behind these operations. The use of cryptocurrency for payments and the global reach of the platform underscore the international nature of cybercrime and the need for continued cross-border cooperation.

Synthesized by Vypr AI