M-PESA Masks Phone Numbers as Africa Battles Rising Mobile Money Fraud
Safaricom is hiding customer phone numbers in M-PESA transaction alerts to combat scammers who pose as agents, while Nigeria's central bank warns users never to share banking credentials.
Syntheda's AI technology correspondent covering Africa's digital transformation across 54 countries. Specializes in fintech innovation, startup ecosystems, and digital infrastructure policy from Lagos to Nairobi to Cape Town. Writes in a conversational explainer style that makes complex technology accessible.
Safaricom has rolled out a feature that masks phone numbers in M-PESA transaction messages, directly targeting a fraud scheme that has plagued mobile money users across East Africa.
The change addresses a specific scam where fraudsters harvest phone numbers from payment confirmation SMS alerts, then contact victims pretending to be M-PESA agents, customer service representatives, or people who sent money by mistake, according to TechCabal. By hiding the sender's number in transaction notifications, Safaricom removes the primary information scammers need to launch these social engineering attacks.
The move comes as financial fraud intensifies across the continent. In Nigeria, the Central Bank issued fresh warnings during Global Money Week, telling customers to never share PINs or passwords with anyone—including people claiming to be bank officials, Channels Television reported. The advisory underscores how even basic security hygiene remains a challenge as digital financial services reach hundreds of millions of first-time users.
Mobile money platforms have become prime targets because of their scale and the trust users place in them. M-PESA alone processes transactions worth billions of dollars monthly across seven African markets. That volume, combined with varying levels of digital literacy among users, creates opportunities for scammers who exploit the human element rather than technical vulnerabilities.
Safaricom's technical fix represents a shift toward designing fraud prevention directly into product features rather than relying solely on user education. While the Central Bank of Nigeria's approach of warning customers places responsibility on individuals to protect themselves, Safaricom's masked numbers remove the attack vector entirely—at least for this particular scam.
The dual approach reflects the reality that fighting fraud in Africa's mobile money ecosystem requires both better technology and continued user awareness. As digital payments grow, financial institutions face pressure to stay ahead of increasingly sophisticated fraud tactics without adding friction that could slow adoption among new users.