These theses discuss the existing vulnerability in the SS7 protocol, which threatens two-factor authentication of bank clients by phone. An attacker can surreptitiously enable call forwarding from the victim’s phone to their own, thus gaining access to the victim’s bank account. It is proposed to measure the electric echo time delay in order to detect call forwarding. Experimental data are provided, demonstrating the effectiveness of this method in combating fraudsters.