Google's Built-In AI Defenses on Android Now Block 10 Billion Scam Messages a Month

Google’s Built-In AI Defenses on Android Now Block 10 Billion Scam Messages a Month

Google has revealed that its Android platform’s built-in AI defenses now block 10 billion suspected malicious calls and messages monthly, marking a significant advancement in combating global phone scams. The company also reported blocking over 100 million suspicious numbers from using Rich Communication Services (RCS), a modern SMS protocol, to prevent scams before they reach users. This update underscores the evolving nature of fraud tactics and the critical role of AI in real-time threat detection.

AI-Based Scam Detection and Filtering

Google leverages on-device AI to automatically identify and filter spam, moving flagged content to the “spam & blocked” folder in the Google Messages app. Key features include:

Safer Links in Google Messages: Warns users when clicking on URLs in flagged spam messages, unless manually marked as “not spam.”
RCS Blocking: Prevents 100 million suspicious numbers from using RCS to send scam messages.
Daily and Weekly Patterns: Scams peak between 5 a.m. to 10 a.m. PT (U.S.), with the highest volume on Mondays, exploiting user busyness and reduced vigilance.

Scam Categories and Tactics

Google’s analysis of user reports (August 2025) identified three primary scam categories:

Employment Fraud: Scammers lure job seekers with fake opportunities to steal personal/financial data.
Financial Scams: Bogus bills, subscriptions, and investment schemes dominate, often using urgency tactics.
Other Scams: Include package delivery, government impersonation, romance, and technical support scams.

Emerging Tactics:

Group Chat Scams: Scammers use group chats to appear less suspicious, often including “fellow scammers” to validate messages.
Spray and Pray: Broad, high-volume campaigns using topical events (e.g., package notifications) to induce hasty actions.
Bait and Wait: Personalized, long-term targeting (e.g., romance scams) to build trust before extracting financial gain.

Infrastructure Supporting Scams

Scammers rely on a global ecosystem of tools and services to scale their operations:

SIM Farms: Hardware for mass SMS distribution.
Phishing-as-a-Service (PhaaS) Kits: Turnkey solutions to harvest credentials and manage campaigns.
Bulk Messaging Services: Distribute scams globally, acting as the “distribution engine” connecting scammers to victims.

Data Sources: Scammers often purchase phone numbers and personal data from dark web marketplaces compromised by security breaches.

Regional Hotspots and Enforcement Challenges

Fraud hotspots are highly volatile, with scammers pivoting to new regions when enforcement tightens. This creates a perpetual cycle of shifting hotspots, not due to physical relocation but strategic adaptation.

Timing of Scams: Fraudulent activity peaks on Mondays (start of the workweek), exploiting user distraction.
Scammer Adaptability: Fraudsters exploit weak regulatory environments, moving operations to areas with fewer restrictions.

Impact and Future Implications

Google’s measures have significantly reduced scam exposure but highlight the arms race between AI defenses and evolving fraud tactics. Users remain vulnerable to personalized, long-term scams (e.g., romance scams) and shortened URLs masking malicious sites. The company emphasizes the need for ongoing AI refinement and global collaboration to disrupt scam infrastructure.

For more details, refer to the full article: Google’s Android AI Scam Defenses

On This Page