RobocallScience

Research to restore trust in telephones



Who's Calling? Characterizing Robocalls through Audio and Metadata Analysis

USENIX Security Symposium

Sathvik Prasad, Elijah Bouma-Sims, Athishay Kiran Mylappan, and Bradley Reaves

Summary:

This research paper presents our first large-scale, longitudinal analysis of unsolicited calls to a honeypot of up to 66,606 lines over 11 months. We characterize long-term trends of unsolicited calls, develop the first techniques to measure voicemail spam and wangiri attacks, and identify unexplained high-volume call incidences. We use recorded call audio to cluster related calls into operational campaigns, allowing us to characterize how these campaigns use telephone numbers.

Paper Abstract

Unsolicited calls are one of the most prominent security issues facing individuals today. Despite wide-spread anecdotal discussion of the problem, many important questions remain unanswered. In this paper, we present the first large-scale, longitudinal analysis of unsolicited calls to a honeypot of up to 66,606 lines over 11 months. From call metadata we characterize the long-term trends of unsolicited calls, develop the first techniques to measure voicemail spam, wangiri attacks, and identify unexplained high-volume call incidences. Additionally, we mechanically answer a subset of the call attempts we receive to cluster related calls into operational campaigns, allowing us to characterize how these campaigns use telephone numbers. Critically, we find no evidence that answering unsolicited calls increases the amount of unsolicited calls received, overturning popular wisdom. We also find that we can reliably isolate individual call campaigns, in the process revealing the extent of two distinct Social Security scams while empirically demonstrating the majority of campaigns rarely reuse phone numbers. These analyses comprise powerful new tools and perspectives for researchers, investigators, and a beleaguered public.