In Canada‘s first known case of its kind, police say the suspects used mobile devices disguised as legitimate cell towers to send thousands of fraudulent text messages and potentially block access to 911. Tens of thousands of phones were affected over several months.
Toronto police have arrested three men in what they are calling a “first-of-its-kind” cybercrime investigation in Canada, involving a mobile device known as an SMS blaster. The technology, which mimics a legitimate cellular tower, allowed the suspects to send large volumes of fraudulent text messages—known as “smishing” attacks—to nearby mobile phones, potentially interfering with emergency services in the process.
The three men face a combined 44 charges, including fraud, identity-related offenses, and mischief endangering life.
What Is an SMS Blaster?
An SMS blaster is a portable device that impersonates a legitimate cell tower. When activated, it broadcasts a signal that tricks nearby mobile phones into connecting to it automatically, bypassing the user‘s actual carrier network.
Once a phone connects, the device can send fraudulent text messages that appear to come from trusted organizations—such as banks, service providers, or government agencies. These messages typically contain malicious links designed to steal personal information, banking credentials, and passwords.
“Unlike normal spam texts, no phone numbers are needed. Anyone within range can be targeted, making it effective for mass phishing in crowded areas,” according to a report from technology news outlet.
The device primarily exploits the 2G network protocol, which lacks modern security features. Security experts recommend disabling 2G fallback on Android devices where possible, though advanced systems may still target LTE or 5G signals.
The Toronto Police Service noted that SMS blasters are distinct from the more advanced IMSI catchers—also known as “Stingrays”—which can pass traffic from real networks and potentially record calls or collect device metadata. While both devices mimic cell towers, SMS blasters are primarily used for mass text-message fraud rather than full surveillance.
Project Lighthouse: How Police Uncovered the Operation
The investigation, dubbed Project Lighthouse, began in November 2025 after a cybersecurity partner alerted law enforcement to suspicious network activity in downtown Toronto. Police soon discovered that the device was mobile and being operated from inside vehicles, allowing it to move throughout the Greater Toronto Area and target multiple locations over several months.
“We believe tens of thousands of devices were connected to the blaster over several months,” Detective Sergeant Lindsay Riddell said at a news conference on April 23. Investigators also identified more than 13 million network disruptions where devices were unable to properly connect to legitimate cell towers.
On March 31, 2026, police executed search warrants at residences in Markham and Hamilton, Ontario. Two men were arrested, and a significant quantity of electronic evidence was seized, including several mobile SMS blasters. On April 21, 2026, a third man turned himself in to police.
The investigation was conducted in coordination with the Royal Canadian Mounted Police’s National Cybercrime Coordination Centre, York Regional Police, Hamilton Police Service, major financial institutions, and telecommunications partners.
The Three Suspects and the Charges
The three men arrested in the operation are:
- Dafeng Lin, 27, of Hamilton
- Junmin Shi, 25, of Markham
The name of the third individual has not been publicly disclosed.
All three face a combined total of 44 charges, including:
- Fraud-related offenses
- Mischief and mischief endangering life
- Identity-related offenses
- Use of a computer system with intent to commit an offence
- Possession of devices to obtain computer service
- Possession of property obtained by crime
Authorities have not yet determined how much money may have been lost in the scheme.
Beyond Fraud: The Public Safety Risk
What made this operation particularly alarming to law enforcement was not just the financial fraud—but the potential to block access to emergency services.
When a mobile device is diverted to a rogue SMS blaster, it temporarily loses connection to its legitimate cellular network. During those moments, users may be unable to place calls, including calls to 911.
“That is significant because during those moments, access to services like 9-1-1 could be impacted,” said Detective Sergeant Riddell. Similar devices have been used in other countries in recent years, including the United Kingdom, the Philippines, and Greece, but Toronto police say this is the first known case involving the technology in Canada.
Deputy Chief Rob Johnson emphasized the scale of the threat at the April 23 news conference:
“What makes this particularly concerning is the scale and impact. This wasn‘t targeting a single individual or business. It had the ability to reach thousands of devices at once. And beyond the financial risk, there are real public safety implications.“
How to Protect Yourself
Police have urged the public to remain vigilant and to follow several key precautions:
- Do not click on links in unexpected text messages, even if the message appears to come from a trusted source.
- Access your banking only through official apps or by typing the website directly into your browser.
- Never share personal or login information through unsolicited messages.
- If you believe you have been a victim of fraud, report it to police.
Security experts have also recommended disabling 2G network fallback on Android devices where possible, though advanced SMS blasters may still target LTE or 5G signals.
“While the technology is new in Canada, the goal of the criminals is not,” Johnson added. “It‘s to gain access to your personal and financial information. Staying cautious and informed remains one of the most effective ways to protect yourself.”
The Bottom Line
Police say they are confident the threat posed by the SMS blaster operation in Toronto is no longer ongoing. But the case represents a significant escalation in the sophistication of cyber-enabled crime in North America—and a wake-up call for mobile users everywhere. The same technology that lets you stream video and order takeout also creates vulnerabilities that criminals are increasingly willing to exploit. A car driving past your office could be carrying a device that hijacks your phone without you ever noticing—until the fake bank message arrives in your inbox.