Fraud Prevention · CAMARA v2.1.0

SIM Swap Detection

Know When a SIM Card Changes — Before You Approve the Transaction.

The CAMARA SIM Swap API gives your platform direct access to the operator's Home Subscriber Server (HSS/HLR). It returns either the precise timestamp of the last SIM-IMSI pairing change, or a yes/no answer for whether a swap occurred within a time window you define — enabling real-time fraud decisions at the network layer.

Get API Access

CAMARA API

Live

CAMARA Use Case

65+

Markets Live

300+

Deployed Instances

Integration

How It Works

Three simple steps from API integration to real-time network intelligence.

Submit the Phone Number

Your backend calls POST /sim-swap/v2/check with the user's phone number and an optional maxAge window (e.g., 240 hours). OAuth 2.0 bearer token authenticates the request.

Operator HSS/HLR Lookup

Almuqeet routes the request to the mobile operator's Home Subscriber Server, which holds the live SIM-IMSI binding history for that subscriber.

Risk Signal Returned

The API returns swapped: true/false for time-window checks, or the exact UTC timestamp of the last SIM change via /retrieve-date — your system decides to approve, challenge, or block.

Network Advantage

The Network-Level Difference

Moving beyond application-layer security to direct mobile network validation.

SIM Swap Is the Bypass for Every SMS-Based Guard

Attackers socially engineer operators to port a victim's number to an attacker-controlled SIM. From that moment, every SMS OTP, every 2FA code, and every password reset link is delivered directly to the attacker — bypassing all application-level security. Billions are lost annually through this single vector.

Query the Source — Not the Device

Instead of trusting what a device reports, Almuqeet queries the operator's HSS/HLR — the authoritative source of SIM-IMSI bindings. We surface the exact moment a swap happened, so you can block a high-risk transaction before a single rupee or dollar leaves the account.

Enterprise

Industry Applications

Deployed across industries that demand network-grade trust and real-time reliability.

Fintech & Banking

Check for a recent SIM swap before authorizing high-value transfers, wire payments, or account logins. Fraud prevention is the #1 CAMARA use case globally.

E-commerce & Crypto

Protect password reset flows and withdrawal authorizations — the two moments most targeted by SIM swap attackers on digital asset platforms.

Account Recovery Flows

Any platform using SMS-based account recovery can add a SIM swap check as a silent gate, blocking takeovers at the moment of recovery initiation.

Technical Specifications

Built on Open Standards

API Versionsim-swap v2.1.0

AuthOAuth 2.0 (3-Legged)

Data SourceLive Operator HSS/HLR

ModesTimestamp + Boolean Check

Request API Credentials

api-request.sh

# Check if SIM was swapped in the last 240 hours
POST /sim-swap/v2/check
Authorization: Bearer {access_token}

{
  "phoneNumber": "+447911123456",
  "maxAge": 240
}

// 200 OK — no recent swap detected
{
  "swapped": false
}

# Or retrieve the exact swap timestamp
POST /sim-swap/v2/retrieve-date
{
  "phoneNumber": "+447911123456"
}
// → { "latestSimChange": "2025-09-14T08:32:11Z" }

Ready to Integrate

Start with SIM Swap Detection

Connect to the CAMARA network API in hours, not months. Our team handles operator relationships and compliance so you can focus on building.

Get API Access