Show HN: Trolling SMS spammers with Ollama (evan.widloski.com)
I've been working on a side project to generate responses to spam with various funny LLM personas, such as a millenial gym bro and a 19th century British gentleman. By request, I've made a write-up on my website which has some humorous screenshots and made the code available on Github for others to try out [0].
A brief outline of the system:
- Android app listens for incoming SMS events and forwards them over MQTT to a server running Ollama which generates responses - Conversations are whitelisted and manually assigned a persona. The LLM has access to the last N messages of the conversation for additional context.
[0]: https://github.com/evidlo/sms_llm
I'm aware that replying can encourage/allow the sender to send more spam. Hopefully reporting the numbers after the conversation is a reasonable compromise.
129 comments
[ 3.2 ms ] story [ 185 ms ] threadHowever, I watch a lot of scam baiting and I've seen a lot of them - even on a live phonecall - be told ridiculously outlandish statements that the scammer will gloss over and return to their script, so I'm not ruling out that it's still a real human...
Even forgiving the work you put in to set all this up (a fun Saturday, for sure), do you imagine you're doing that here?
More likely, though it's using an even more cost efficient technique and isn't consuming much or any human attention at all here.
So, no one is wasting time, maybe a few minutes when they get a notification that the lead is "hot".
It’s not a perfect rationale and I see what you mean but, for me, it would be like confronting a thug on the street when one has good reason to believe they are victimizing someone else out of sight. Would I lose more by confronting them than they stand to gain, or should I just confront them no matter what?
What, you think the crime lords in charge of these scams actually do the grunt work? That's what kidnapping is for.
* including mine (not Russia) -- incessant daily calls to every person I know.
https://en.m.wikipedia.org/wiki/List_of_countries_and_territ...
In this always connected, SaaS-dominated world, it saddens me that all too often people marginalize the cost of keeping all that infrastructure up and running.
1. they're fairly low power and
2. the LLM speed is less of an issue because SMSs like this don't warrant an instant reply anyway so if it takes 2 or 3 minutes to generate that's fine
Had a good laugh from this.
It seems we're heading towards a future where companies and scammers/spammers use AI bots to get more money for themselves, while individuals use their own AI bots to avoid or filter those attempts. Makes the whole thing seem pretty pointless.
Not if you're heavy on NVDA though I guess.
Seriously though, I think this will hit a threshold where these communication tools become useless. Email, phone, web, social media, will just be so full of AI spam we'll be warming the planet in a never ending game of cat and mouse. It's so stupid it sounds like something straight out of Hitchhiker's.
https://www.federalregister.gov/documents/2024/01/26/2023-28...
https://consumer.ftc.gov/articles/how-recognize-and-report-s...
I like how one of those was called the CAN-SPAM act. Others have been similar.
Slowly, as more people opt into it, we can make it opt out, and then get rid of the old protocol completely. If some countries don't want to adopt the new protocol, well tough luck at that point but I think it is fundamental for us to be able to trust caller ID before we can do anything else.
Many VoIP SIP trunking providers will pass SMS info to an asterisk system these days (such as voip.ms and its competitors), and support outgoing SMS for replies.
All you need is a $0.85/month DID, a linux system running asterisk, and some small monthly amount of paid credit for the cost of the outgoing SMS.
Shortcuts does not allow deleting messages apparently :(
LLMs are tools of abundance. Scammers (and apparently even anti-scammers as here) are using these tools from a perspective of scarcity. Rather than help build more wealth for everyone, they burn wealth through competition. Consider instead as just one alternative if, say, the anti-scammer LLM helped the scammer figure out how to get more meaningful work? Maybe that specific alternative won't be effective (dunno), but the alternative at least points in a healthier compassionate direction.
For more on this, see my essay from 2010: https://pdfernhout.net/recognizing-irony-is-a-key-to-transce... "There is a fundamental mismatch between 21st century reality and 20th century security [and economic] thinking. Those "security" [and "economic"] agencies are using those tools of abundance, cooperation, and sharing mainly from a mindset of scarcity, competition, and secrecy. Given the power of 21st century technology as an amplifier (including as weapons of mass destruction), a scarcity-based approach to using such technology ultimately is just making us all insecure. Such powerful technologies of abundance, designed, organized, and used from a mindset of scarcity could well ironically doom us all whether through military robots, nukes, plagues, propaganda, or whatever else... Or alternatively, as Bucky Fuller and others have suggested, we could use such technologies to build a world that is abundant and secure for all. ... The big problem is that all these new war machines and the surrounding infrastructure [and economic] are created with the tools of abundance. The irony is that these tools of abundance are being wielded by people still obsessed with fighting over scarcity. So, the scarcity-based political mindset driving the military [and economic] uses the technologies of abundance to create artificial scarcity. That is a tremendously deep irony that remains so far unappreciated by the mainstream."
https://thespamchronicles.stavros.io/welcome/
So, counterintuitively, helping the spammers.
Spammers need to amass a strong baseline of “organic” received SMS responses in order to be unthrottled so that they can effectively spam.
Responding STOP will get the number blacklisted after a relatively few strikes.
If the spammer’s LLM costs more to run that the decoy LLM it may be possible to make still be possible to make it an unprofitable activity.
I told them that I was calling from France but the insisted on having a US number to connect me "if needed".
I saw a number on a paper ad on my desk and proceeded to spell it out, stripping the +1.
I wondered several times since then whether their telemarketing dept contacted the telemarketing team in that other company.
Whereas, trolling them is repaying evil with evil with low likelihood of positive effects.
https://news.ycombinator.com/item?id=42781871
…that it’s better if we don’t do that. We need to have honest, human conversations with these people.
What I might do is what some of them do. If I can’t answer, and it’s likely spam, the software could send a pre-made reply that tries to start a conversation about Christ or their life choices. The LLM scores responses to see if they respond positively to that. If so, it lets me know to take over. Otherwise, a polite reply that we’re not interested.
The reason I left telegram was that I got some spam and tried to make my number undiscovererable. Then I found out that I needed to be a premium subscriber to have that feature :D
that solution is unworkable because non-technical people don't know (and don't want to know) what a pubkey is, and they still want to be able to dictate their number to somebody.
Unfortunately, the only solution that makes sense here is to restrict message sending to authorized devices and authorized apps.
You can now. I've setup my profile to only be discoverable by contacts that are already in my contacts list, and have never paid Telegram a dime.