Former Sonatel Technician Sentenced for Network Fraud

Insider threat exposes vulnerabilities in Senegal's telecom cybersecurity oversight

Apr. 17, 2026 at 4:53am

Got story updates? Submit your updates here. ›

An extreme close-up photograph of a damaged telecom network component, such as a circuit board or cable connector, lit by a harsh, direct camera flash against a pitch-black background, conveying a stark, gritty, investigative aesthetic without depicting any violence.A damaged telecom component exposes the vulnerabilities that enabled a former technician's fraud scheme, undermining public trust in Senegal's digital infrastructure.Tallahassee Today

A former Sonatel technician was sentenced to 4 months in prison for exploiting the telecommunications company's network infrastructure to reroute international call traffic, diverting an estimated 12 million CFA francs in revenue over 18 months before detection. The case highlights critical vulnerabilities in Senegal's digital asset protection frameworks and the urgent need for specialized cybersecurity oversight in critical national infrastructure.

Why it matters

This incident is not isolated, as Sonatel reported a 22% year-over-year increase in internal fraud attempts in 2023. Insider threats, especially those involving former employees with lingering access, pose a disproportionate risk to telecom operators in West Africa, where regulatory enforcement of cybersecurity hygiene lags behind technological adoption. The financial impact, while significant, pales in comparison to the reputational and operational risks, as telecom fraud can erode trust in national digital infrastructure and potentially enable more serious crimes.

The details

The fraud was traced to a series of shell companies registered in Bamako and Conakry, which were used to monetize the hijacked VoIP routes through fraudulent interconnect agreements with overseas carriers. The former technician, Abdou Lahat Lo, had been dismissed in January 2025 for unrelated policy violations but allegedly retained remote access credentials through a dormant service account, exploiting a known gap in Sonatel's offboarding protocol that failed to immediately revoke privileged access for contractors with network engineering roles.

  • In late 2024, Sonatel's internal audit team flagged anomalous traffic patterns originating from Lo's former workstation in the Thiès regional hub.
  • In January 2025, Lo was dismissed from Sonatel for unrelated policy violations.
  • On April 17, 2026, a Dakar court sentenced Lo to four months in prison for the fraud scheme.

The players

Abdou Lahat Lo

A former Sonatel technician who was sentenced to four months in prison for fraudulently exploiting the telecommunications company's network infrastructure to reroute international call traffic.

Sonatel

A telecommunications company in Senegal that was the victim of the network fraud scheme perpetrated by Abdou Lahat Lo.

Directorate of Information Systems Security (DISS)

The government agency that investigated the fraud case and traced the scheme to shell companies in Bamako and Conakry.

Judge Fatoumata Ndiaye

The judge at the Dakar Tribunal de Grande Instance who emphasized in her ruling that the sentence aimed to deter not just individuals but institutional complacency.

Professor Khadija N'Diaye

A cyberlaw specialist at Cheikh Anta Diop University who stated that prosecuting the individual is the easy part, and that the real work is in fixing the process that allowed the fraud to happen.

Got photos? Submit your photos here. ›

What’s next

The judge in the case emphasized the need for stricter enforcement of Law No. 2018-28 on cybersecurity and personal data protection, which mandates quarterly access reviews for all personnel with elevated system privileges. Legal experts note that while the conviction sets a precedent, prosecution remains challenging due to jurisdictional complexities when fraud routes transit through multiple countries, highlighting the need for stronger mutual legal assistance treaties and real-time data sharing between West African telecom regulators.

The takeaway

This case serves as a stark reminder that technological progress must be matched by equal rigor in human and procedural safeguards. The true measure of resilience isn't just in firewalls and encryption—it's in the everyday discipline of who holds the keys, and how quickly companies take them away when they're no longer trusted. Addressing the root causes of insider telecom fraud requires proactive, specialized expertise in identity and access management, cybersecurity auditing, and regulatory compliance.