Eric Council Jr., 26, gets 14 months in prison for a 2024 SIM swap that let hackers post a fake Bitcoin #ETF approval from the SEC’s X account.
Read: https://hackread.com/man-sec-bitcoin-hoax-tweet-sentenced-sim-swap-hack/
$38,000… GONE while he was sleeping.
That’s how fast SIM-swapping can destroy your financial life.
In just 3 hours, a hacker took over Justin Chan’s phone number, intercepted his two-factor codes, and emptied his bank and trading accounts. No alarms. No notifications. Just silent access and drained funds.
It didn’t happen because he was careless.
It happened because the attacker exploited a broken system:
- His mobile carrier transferred his number to a new device without proper checks
- His 2FA codes were sent to that new device
- His bank and investment apps trusted that number
This is the $38,000 mistake most people never see coming. Because by the time you realize something is wrong — it’s already too late.
The worst part? Getting the money back was harder than the hack itself.
It took media pressure, endless follow-ups, and months of stress just to get refunded.
Mobile numbers are the new master key — and most people are handing them out unlocked.
If your 2FA is tied to your phone number, it's time to change that.
If your carrier doesn’t lock down your SIM by default, it’s time to upgrade.
And if your bank’s idea of protection is a form letter and a closed case, don’t wait for a wake-up call at 3AM.
SK Telecom's Cybersecurity Breach: A Wake-Up Call for Mobile Providers
In a significant cybersecurity incident, SK Telecom faces a data breach affecting 25 million customers, prompting a mass SIM card replacement initiative. This event highlights the vulnerabilities in m...
https://news.lavx.hu/article/sk-telecom-s-cybersecurity-breach-a-wake-up-call-for-mobile-providers
Noah Urban, aka "King Bob" and a suspected member of Scattered Spider, pleaded guilty this week in a case involving wire fraud, cryptocurrency theft, phishing, and simswapping. He had cases against him in Florida and California. Other people indicted with him have yet to be tried or to make plea deals, and one young man from Scotland has been detained in Spain pending determination of extradition request (I haven't found any update on the extradition case).
or jump directly to Urban's plea agreement:
https://storage.courtlistener.com/recap/gov.uscourts.flmd.422789/gov.uscourts.flmd.422789.66.0.pdf
#wirefraud, #cryptocurrency, #phishing, #simswapping, #identitytheft
Schluss mit SMS-Codes: Google ersetzt Authentifizierung bei Gmail durch QR-Codes
Google hat angekündigt, die SMS-basierte Zwei-Faktor-Authentifizierung (2FA) bei Gmail durch QR-Codes zu ersetzen. Mit dieser Änderung verfol
https://www.apfeltalk.de/magazin/news/schluss-mit-sms-codes-google-ersetzt-authentifizierung-bei-gmail-durch-qr-codes/
#News #Services #Authentifizierung #Gmail #Google #Kontoschutz #Phishing #QRCode #Sicherheit #SIMSwapping #SMSCodesAblsen #ZweiFaktorAuthentifizierung
From yesterday. #cybersecurity #infosec #SIMSwapping
"I’m still unsure of how this person got access to my accounts, whether through my social security number, phone number or date of birth, or possibly a recording of my voice."
"It was a hard lesson in how vulnerable we are when you lose control of our personal information that is so publicly available."
What’s worse than thieves hacking into your bank account? When they steal your phone number, too https://apnews.com/article/fraud-identity-theft-fcc-wireless-providers-8df930f2983d589c4822bba53eedfc1b @AP
Widespread spam targets carrier employees, as scrotes try harder to evade two-factor authentication.
It’s no secret that cellular carrier reps are subject to bribery. Here’s a great example. Yes, again with the #SIMswapping.
Someone seems to have stolen a contact list of T-Mobile employees and is texting them offers of bribes to execute SIM swaps. But T-Mobile denies it’s been hacked… again.
Here’s the soft underbelly of the insider threat model. In #SBBlogwatch, we balk at the three-Benjamin bribes. At @TechstrongGroup’s @SecurityBlvd: https://securityboulevard.com/2024/04/sim-swap-bribe-t-mobile-300-richixbw/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc
Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider
https://krebsonsecurity.com/2024/01/fla-man-charged-in-sim-swapping-spree-is-key-suspect-in-hacker-groups-oktapus-scattered-spider/ #SIMSwapping #florida #hacking #breach #grails
SIM-swapping ring stole $400M in crypto from a US company, officials allege - Enlarge (credit: Wong Yu Liang | Moment)
The US may have uncov... - https://arstechnica.com/?p=1999957 #cryptocurrencywallets #cryptocurrencyscheme #mobiledevicesecurity #cryptocurrencyscam #cryptocurrency #identitytheft #devicefraud #simswapping #wirefraud #simswap #policy
"While MFA had previously been enabled on the @SECGov X account, it was disabled by X Support, at the staff's request, in July 2023 due to issues accessing the account," the SEC said in a statement" #simswapping
Share Message - US regulator admits cyber-security lapse before rogue Bitcoin post
https://www.bbc.co.uk/news/technology-68025683
The FCC says new rules will curb SIM swapping. I’m pessimistic - Enlarge (credit: Getty Images | Panuwat Sikham)
After years of... - https://arstechnica.com/?p=1985061 #federalcommunictionscommission #simswapping #security #portout #biz #fraud #fcc
SIM swapping involves transferring a user’s account to a SIM card controlled by the scammer, often through deceptive means with the victim’s wireless carrier.
Od czerwca 2024 będzie można zastrzec swój PESEL - taką informację przekazało 16 maja Ministerstwo Cyfryzacji. Jednak wprowadzane rozwiązanie zdaje się nie rozwiązywać wszystkich problemów. Sprawę omawiam szerzej w nowym artykule na #blog - https://jozwiak.top/blog/jak-projekt-ministerstwa-wplynie-na-sim-swapping?s=fedi
Twitter permanently suspended journalist who interviewed Matt Walsh’s hacker - Enlarge
This week, The Daily Wire podcast host Matt Walsh got... - https://arstechnica.com/?p=1933486 #firstamendment #simswapping #twitter #policy #hacker
Psycho Bunny To The Rescue
After gaining control of her phone, hackers ripped off Avery Hartmans for $10,000.
Even worse, her credit card company didn’t believe the charges were fraudulent. Three weeks shy of her wedding, she was saddled with $9,778.24 in debt.
This interactive retelling of her ordeal is an awesome way to introduce people to the reality of organized crime attacking ordinary consumers through SIM swapping and physical theft of credit cards.
You don’t have to be “somebody special” to wind up on the receiving end of digital fraud.
And half of all victims of identity theft wind up being victimized again.
This is a great read, and the interactive pieces make the story more engaging.
https://www.businessinsider.com/credit-card-phone-theft-sim-swap-identity-theft-investigation-2023-4
> 400M Twitter accounts data is on sale, among which the most critical are username, mobile numbers & email. Hacker was able to provide a sample list of 1000 usernames, and our founder Haseeb Awan was able to verify many of them.
There are some serious concerns with the #databreach
1 - Identities of many pseudo accounts will be public
2 - With a phone number, it's super easy to find anyone's address and banking information.
3 - Multiple phishing attempts via cellphone, physical, or email
4 - #simswapping attacks to take over your bank account, social media, or confidential information
Preventative tips:
1 - Ensure that your MFA/non-sms 2FA is turned ON for every account that you use via #Authy #GoogleAuthenticator
2 - Switch to @Efani (irrespective of biasness, we have a 100% track record of securing your phone number, and no one provided any insurance)
3 - Use a #passwordmanager. Keeper Security Enterprise password Manager is ideal, but #DYOR.
4 - Call your bank and tell them to put a limit on withdrawals above
5 - Use a hardware wallet. #NGRAVE which is ideal, but #DYOR.
6 - Get Optery, getagency.com, or BLACK CLOAK for digital security
Police in Spain dismantle a SIM-swapping ring that drained bank accounts - Enlarge (credit: Getty Images)
Authorities in Spain said they ... - https://arstechnica.com/?p=1833644 #simswapping #biz&it #police #crime
(4/4) In related News, FCC is targeting SIM swapping/port-out fraud.
#FCC #SIMswapping #Infosec #PortOutFraud #Cybersecurity #News #telecom #2FA
https://krebsonsecurity.com/2021/10/fcc-proposal-targets-sim-swapping-port-out-fraud/
Fraudsters offers thousands to low-waged telco employees for help with SIM Swap scams https://boingboing.net/2018/08/03/cheap-plugs.html #securityeconomics #portoutscams #simswapping #telcoms #crime #fraud #plugs #Post #2fa #sms
'/%3e%3cpath%20d='M50.3943%2022.237V39.5876H43.5185V22.7481C43.5185%2019.2029%2042.0411%2017.3949%2039.036%2017.3949C35.7325%2017.3949%2034.0778%2019.5338%2034.0778%2023.7585V32.9759H27.2434V23.7585C27.2434%2019.5338%2025.5857%2017.3949%2022.2822%2017.3949C19.2949%2017.3949%2017.8027%2019.2029%2017.8027%2022.7481V39.5876H10.9298V22.237C10.9298%2018.6918%2011.835%2015.8754%2013.6453%2013.7877C15.5128%2011.7049%2017.9623%2010.6355%2021.0028%2010.6355C24.522%2010.6355%2027.1813%2011.9885%2028.9542%2014.6917L30.665%2017.5633L32.3788%2014.6917C34.1517%2011.9885%2036.811%2010.6355%2040.3243%2010.6355C43.3619%2010.6355%2045.8114%2011.7049%2047.6847%2013.7877C49.4931%2015.8734%2050.3963%2018.6899%2050.3943%2022.237Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_89_8'%20x1='30.5'%20y1='0'%20x2='30.5'%20y2='65'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%236364FF'/%3e%3cstop%20offset='1'%20stop-color='%23563ACC'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e)
/ Loistava 
RightToPrivacy & Tech Tips 
