Skip to content
Entrepreneur's Corner

The Fake Reversal Trick: How Kenya’s Sellers Were Robbed in Plain Sight

BY Soko Directory Team · July 8, 2026 08:07 am

For years, the small trader was the weak link in Kenya’s mobile money success story. A grocer in Kawangware, a boutique owner in Eldoret, a boda boda operator waiting for a fare, all of them shared one habit that fraudsters learned to exploit: they trusted the ping of an M-Pesa notification before they trusted their own eyes.

The scam was elegant in its simplicity. A “buyer” would approach a seller, agree on a price, and send a text message engineered to look exactly like a genuine M-Pesa payment confirmation, same font, same formatting, same sender name. The seller, busy or distracted, would hand over goods or change on the strength of that message alone. Minutes later, the “buyer” would call back, sounding apologetic, claiming they had sent too much money or paid the wrong till, and ask the seller to refund the difference via a real M-Pesa transaction. By the time the seller checked their actual balance, the truth was obvious: no money had ever landed. The confirmation was fabricated. The refund, however, was real money, gone for good.

Variants of this trick multiplied. Some fraudsters skipped the fake buyer altogether and simply pretended to be Safaricom staff, calling sellers directly and instructing them to “process a reversal” through USSD codes that actually authorised an outgoing transfer. Others convinced agents to hand over a customer’s phone under the guise of resolving a dispute, then took control of the line entirely.

What made these scams so damaging was psychological, not technical. Sellers, especially those handling dozens of small transactions a day, had been trained by years of legitimate M-Pesa use to trust a text message as proof of payment. Fraudsters simply weaponised that trust.

How Safaricom Fought Back

Safaricom’s response has been layered rather than a single silver bullet, and that is precisely why it has worked as well as it has.

First came public education at scale. Safaricom has repeatedly and explicitly warned customers that its customer care team will never ask customers to visit an agent for a reversal, and that reversals should only be initiated through official Safaricom channels. This single message directly undercuts the agent-hijack version of the scam.

Second, the company built a rapid reporting pipeline. Customers who receive a suspicious message are told to forward it to 333 so the sending number can be blocked before it defrauds anyone else, while genuine mis-sent payments should be resolved by <forwarding the transaction message to 456 or contacting Safaricom directly, rather than sending an independent “refund.”

Third, and most consequentially for sellers specifically, Safaricom introduced Hakikisha, a verification layer that displays the recipient’s name before a transaction is confirmed, closing the gap between what a screen claims and what has actually happened.

Fourth, the network leaned on infrastructure Safaricom already controlled: encrypted data transmission across the network makes it far harder for outsiders to spoof transaction data at the system level, even if the visible text message can still be faked.

Finally, Safaricom paired technology with enforcement, working alongside Kenya’s Directorate of Criminal Investigations and the Communications Authority on SIM-related fraud, and supporting the mass SIM re-registration exercise that took thousands of fraudulently registered lines out of circulation.

None of this makes the fake reversal trick extinct. Fraud, like water, finds the next weak point, new templates, new urgency scripts, new confidence tricks aimed at busy sellers. What Safaricom’s approach demonstrates, though, is that the most effective defence against a psychological scam isn’t purely technical. It’s teaching an entire economy of small sellers a single, simple discipline: never trust a text message, trust your own balance. Dial your own USSD code. Check your own app. That habit, more than any encryption standard, is what finally started closing the gap fraudsters had exploited for years.

The lesson for other mobile money markets watching Kenya is straightforward: the fix for a trust-based scam has to be a trust-based countermeasure — verify before you believe, and make verification as easy as the fraud itself.

Read Also: SIM Swap Fraud: How Scammers Hijack Your Line And How Safaricom Is Winning The Fight Back

Soko Directory is a Financial and Markets digital portal that tracks brands, listed firms on the NSE, SMEs and trend setters in the markets eco-system.Find us on Facebook: facebook.com/SokoDirectory and on Twitter: twitter.com/SokoDirectory

Trending Stories
Related Articles
Explore Soko Directory
Soko Directory Archives