Background
This paper, produced by the GSMA Device Security Group, explores some of the history around mobile device theft, particularly over the twenty-five years up to 2024. It explores solutions and highlights insights and experience gained, all contributed by a broad range of industry experts and cyber security professionals, so that readers can learn about the true challenges faced by all trying to tackle this very complex societal issue.
Many different approaches to the problem have been attempted, by a diverse range of stakeholders, from
government to industry. Technical security measures have been implemented in devices, which have also had a complimentary, beneficial effect on the overall device and, therefore, user security. Industry and national schemes for blocking stolen device identities have been implemented, as have tools for preventing the re-activation of stolen devices.
Awareness campaigns and educational material have been produced by government organisations and industry alike; to aid user understanding of the value of the devices they have in their hands. Educating users on how they can take action if a device is stolen has also been key, in terms of enabling tools that operate on devices, but also in taking specific actions post-theft.
Purpose
This paper reviews the landscape of mobile device theft, aiming to both inform and discuss the security,
privacy, financial, and reputational risks that this type of theft represents. It is also intended as a consolidated reference document for those who are new to the topic in order to facilitate study into what efforts have worked and to avoid repeating mistakes where those efforts have not had the desired effect.