The United States government is playing an aggressive game of whack-a-mole with a multi-billion-dollar global syndicate, and the infrastructure supporting the fraudsters belongs to the nation's largest telecommunications companies.
In May 2026, the leaders of the U.S. Congressional Joint Economic Committee issued an urgent demand to major wireless carriers, insisting they step up internal enforcement to curb a historic deluge of fraudulent robocalls and robotexts. It is the latest political salvo aimed at an industry that critics argue treats consumer security as an optional, monetizable feature rather than a fundamental utility requirement.
Federal Trade Commission data paints a bleak picture of the battlefield. In 2025 alone, American consumers suffered a record $15.9 billion in reported losses from fraud and scams, marking a staggering 430% increase since 2020. When factoring in massive underreporting, the true economic drain easily eclipses $100 billion annually. Despite the 2019 TRACED Act and the mandatory rollout of STIR/SHAKEN caller ID authentication protocols, the bleeding has not stopped. Instead, it has accelerated.
The core issue is structural. Telecom carriers operate on a volume-based business model where every minute of voice traffic and every outbound SMS packet represents a fraction of a cent in network transit fees. While major networks intercept tens of billions of automated transmissions annually, billions more slip through domestic gateways. The financial incentive structures inherent in global telecom routing have fundamentally misaligned the interests of network operators with those of the everyday subscribers they charge for protection.
The Revenue Mechanics of the Scam Economy
To understand why the network defenses remain porous, one must follow the financial plumbing of a modern phone call. Telecommunications is an interconnected web of primary carriers, competitive local exchange carriers, and third-party gateway providers. When an offshore criminal call center in Southeast Asia or Eastern Europe initiates an imposter campaign, they do not connect directly to an American subscriber. They purchase high-volume, low-cost routing from wholesale VoIP gateway providers.
These gateway providers act as the digital entry ports into the domestic telephone network. They bridge foreign internet-protocol voice data with the traditional North American numbering plan. The primary domestic carriers receive these calls at their network borders and charge termination fees to complete the connection to the end user.
Money changes hands at every step of this chain.
A high-volume spam campaign that transmits three million automated calls an hour generates real, measurable wholesale revenue across multiple transit intermediaries. While top-tier carriers aggressively state that they ban known bad actors, the sheer volume of micro-providers operating on the fringes of the network makes total enforcement a logistical nightmare. The industry trade group CTIA reported that wireless providers blocked 55 billion spam text messages and flagged roughly 45 billion scam calls recently. Yet, automated tracking analytics from software firms like YouMail reveal that the baseline volume of successful domestic robocalls has remained stubbornly locked between 50 billion and 55 billion calls annually for the last five years.
Defending a network requires capital expenditure. Running deep-packet inspection, deploying behavioral AI filters, and actively auditing downstream gateway partners costs money. Conversely, letting unverified traffic ride the network lines generates steady, passive termination revenue. This economic reality creates a passive resistance within the telecom ecosystem toward total, aggressive network sanitation.
The Branded Caller ID Revenue Pivot
Rather than absorbing the costs of security as a baseline operational expense, major telecommunications companies are increasingly looking to transform scam prevention into a profit center. The latest industry push centers on a technology known as branded caller ID.
Under this framework, legitimate enterprises—such as hospitals, banks, and e-commerce logistics firms—pay a premium fee to telecom providers to ensure their corporate logo, verified business name, and a "trusted" checkmark appear on a consumer’s smartphone screen during an incoming call. In early 2026, a coalition of financial services trade groups submitted joint filings to the Federal Communications Commission backing this technology as the next evolutionary step in building consumer trust.
The underlying business strategy is highly lucrative.
[Unverified Incoming Traffic] ──> [Carrier Network Filters] ──> [Premium Branded Verification Fee Paid?]
│ │
(Yes) (No)
▼ ▼
[Logo & Trusted] [Basic Number /
Checkmark] Potential Spam]
By establishing a paywall for identity verification, carriers create a two-tiered system. Wealthy enterprise clients pay to protect their brand integrity, while smaller local businesses, public school districts, and rural medical clinics are left to display as unverified numbers. If an organization cannot afford the ongoing verification toll, their legitimate outbound calls face a high probability of being erroneously flagged as "Spam Likely" by automated carrier algorithms.
This monetization strategy shifts the financial burden of identity authentication onto external businesses while forcing the end consumer to act as the ultimate arbiter of risk. If a subscriber wants advanced, real-time protection that actively intercepts spoofed numbers before the device vibrates, they are frequently directed toward premium carrier-branded security applications that require monthly subscription fees. Security is transformed from an infrastructure standard into an add-on luxury.
The Failure of Current Technical Protocols
The primary defensive standard currently deployed across the industry is the STIR/SHAKEN framework. Mandated by the FCC, this protocol requires carriers to digitally sign telephone calls as they move through the network, assigning an attestation level based on how thoroughly the provider can verify the identity of the caller.
- Full Attestation (Level A): The carrier recognizes the customer and confirms they have the legal right to use the telephone number displaying on the caller ID.
- Partial Attestation (Level B): The carrier knows the customer originating the call but cannot verify if they are authorized to use that specific phone number.
- Gateway Attestation (Level C): The carrier is simply passing the call along from an international gateway or an external network, with zero visibility into the true origin or identity of the caller.
The system is fundamentally broken at Level C.
International organized crime networks do not attempt to bypass Level A attestation. Instead, they exploit the international gateway exemption loopholes. A fraud ring operating out of a call center can rent thousands of unallocated U.S. numbers via complicit or negligent digital proxies. When these calls hit a domestic gateway provider, they are passed into the wider U.S. network with a Level C stamp.
Because total network isolation would drop legitimate international communications, major domestic carriers accept these Level C calls and deliver them straight to consumer devices. The phone rings. The caller ID displays a localized area code. The consumer answers, exposed to a highly sophisticated script.
The introduction of consumer-facing generative AI tools has weaponized this access point. With less than three seconds of audio scraped from a public social media video, deep learning voice-cloning software can perfectly replicate the vocal cadence, tone, and inflection of a specific individual. Scammers use these cloned voices in targeted emergency impersonation schemes, convincing parents or grandparents that a family member is injured or detained and requires an immediate wire transfer.
According to FTC records, phone-initiated scams carried a devastating median loss of $1,835 per victim in 2025. Text-based phishing campaigns—which often bypass carrier network filters by utilizing peer-to-peer SMS gateways and rotating burner numbers—recorded a median loss of $1,000 per victim. The technical hurdles to executing these attacks have plummeted to near zero, while the structural defenses of the networks have remained fixed in a pre-generative AI paradigm.
Regulatory Paralysis and the Enforcement Gap
The sudden surge in economic losses occurs at a time when federal consumer protection agencies find themselves legally hamstrung.
For decades, the Federal Trade Commission relied on its authority under Section 13(b) of the FTC Act to take fraudulent operators directly to federal court to secure immediate asset freezes and force direct financial restitution to victims. This single mechanism clawed back over $11 billion for defrauded consumers between 2016 and 2020. However, a landmark Supreme Court ruling in April 2021 stripped the FTC of this authority, decreeing that Section 13(b) did not explicitly authorize the agency to pursue court-ordered monetary relief.
The real-world consequences of this legal shift have been catastrophic. Over the last five years, while reported annual fraud losses ballooned from $5.8 billion to nearly $16 billion, the total volume of consumer refunds successfully distributed by the FTC plummeted to just $2 billion over that entire half-decade span.
While legislative pushes like the Consumer Protection Remedies Act of 2026 aim to restore this authority, the bill remains stuck in committee negotiation rooms.
This regulatory enforcement gap creates an ideal operational environment for transnational criminal cartels. Even when the FTC or the FCC successfully identifies a non-compliant gateway provider facilitating millions of illegal automated calls, the civil administrative penalties take months or years to litigate. By the time a formal cease-and-desist or fine is issued, the operators behind the entity frequently dissolve the corporate structure, transfer their capital into un-traceable cryptocurrency assets, and reconstitute under a completely new legal name with fresh server infrastructure the following week.
Moving Beyond Polite Political Requests
The letters sent by the Congressional Joint Economic Committee requesting that major carriers "do more" reflect a persistent political unwillingness to enforce structural liability. Historically, Washington has treated telecom companies as cooperative allies assisting law enforcement rather than critical points of failure in national security architecture.
As long as the regulatory framework allows carriers to shield themselves from legal liability for the fraudulent data running across their wires, voluntary corporate compliance will always be restricted by quarterly financial considerations. Real protection requires a fundamental shift in the legal obligations of network operators.
If telecommunications giants were legally and financially penalized for terminating authenticated fraudulent calls on consumer devices—treating illicit voice traffic with the same strict liability applied to banking institutions processing stolen funds—the economic equation would invert overnight. Gateway providers would face rigorous, automated background checks. Downstream networks would be audited with uncompromising technical scrutiny. The industry would rapidly deploy the capital necessary to close the international routing loopholes that currently leave millions of citizens exposed to predatory financial exploitation.
Until Congress replaces polite public inquiries with strict, statutory financial liability for transit providers, the American telephone network will remain a highly efficient delivery mechanism for global organized crime.
