Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
×
Security IT Technology

Authorities Arrest SIM Swapping Gang that Targeted Celebrities (zdnet.com) 29

Eight men were arrested across England and Scotland this week as part of a coordinated crackdown against a SIM swapping gang that has hijacked the identities and social media profiles of US celebrities. From a report: The UK National Crime Agency, which made the arrests on Tuesday, said the gang targeted well-known sports stars, musicians, and influencers, primarily located in the US. "These arrests follow earlier ones in Malta (1) and Belgium (1) of other members belonging to the same criminal network," Europol, which coordinated the multi-national investigation, said today. Officials said this gang engaged in SIM swapping attacks, where they tricked US mobile operators into assigning a celebrity's phone number to a new SIM card under the attacker's control. While they had access to the victim's phone number, the SIM swappers would reset passwords and bypass two-factor authentication on the victim's accounts. "This enabled them to steal money, bitcoin and personal information, including contacts synced with online accounts," the NCA said. Europol said the gang stole more than $100 million worth of cryptocurrency using this method
This discussion has been archived. No new comments can be posted.

Authorities Arrest SIM Swapping Gang that Targeted Celebrities

Comments Filter:
  • Why would they target celebrities? Celebrities have a jillion eyeballs and cameras on them and their dwellings. Rich nobody's would be a better target.

    • by GlobalEcho ( 26240 ) on Wednesday February 10, 2021 @03:19PM (#61048420)

      Why would they target celebrities? Celebrities have a jillion eyeballs and cameras on them and their dwellings. Rich nobody's would be a better target.

      I agree, but let us also remember that these are Sim-swapping criminals dumb enough to get caught. No doublt there are zillions of smarter ones choosing better targets and avoiding capture. May their milk curdle.

    • by Midnight_Falcon ( 2432802 ) on Wednesday February 10, 2021 @04:22PM (#61048558)

      Why would they target celebrities? Celebrities have a jillion eyeballs and cameras on them and their dwellings. Rich nobody's would be a better target.

      For practical reasons actually, celebrities tend to be easier to research and find answers to various security questions, due to the wealth of information posted online about them due to fandom. These security questions may be harder for average folks, "What's your favorite animal?", but I'm sure you can find an interview with a celebrity where they talk about their love of leopards, pandas etc.

      They also tend to have a large number of social media followers, meaning it can be more easily monetized for bitcoin scams etc.

      • by WallyL ( 4154209 )
        Wait, people use the real answers to these security questions?! Who really believes that "Richard" is my first job? (Well, he was one of the supes)
    • Celebrities have a jillion eyeballs and cameras on them and their dwellings.

      This is false because there a LOT of minor celebrities. You should consider how many "Youtubers" there are because if they have a channel with millions of subscribers then they are a celebrity. Just because you don't know they doesn't make them less of a celebrity.

    • by quenda ( 644621 )

      Why would they target celebrities?

      nudes.

  • Inmate convicted of sim-swapping victim of sim-swap

    SOMEPRISONSOMEWHERE - A prisoner from the notorious "2020 SIMSWAP gang" was a victim of his own game. He was caught after a guard heard him screaming when he found out his account at an unnamed crypto-currency exchange had been emptied. No word yet on whether prosecutors are willing to give him a lighter additional sentence for having a contraband cell phone in exchange for helping track down those who victimized him.

  • is how I first interpreted it. I was thinking the authorities had nothing better to do if they were arresting virtual people.

  • Google Authenticator / Microsoft Authenticator use TOTPs to authenticate rather than basic phone numbers. Why aren't apps using something similar that can't be easily stolen?

    • That's my #1 reason for never using SMS for security. Who still trust any telecom company at this point?

    • by ahodgson ( 74077 )

      Customer service.

      People lose stuff like phones. They don't back up their TOTP seeds.

    • by octagon ( 13923 )

      That is what I thought... but then I got simjacked and my 2fa TOTP codes were bypassed because of google account recovery was set to my phone.

  • I wonder if that seized crypto currency is just plain lost, which in theory increases the value of what remains, just as a permanently locked wallet you can't remember the password for does...

    • When the National Crime Agency seizes things - boats, cars, houses, Bitcoin, paintings, whatever, they sell the stuff at auction. You can find the auction listings with a quick Google search.

      Here's one of their pages about it.

      https://www.nationalcrimeagenc... [nationalcr...ncy.gov.uk]

      I found it interesting what they choose for the very first sentence in their web page:
      "Someone doesn't need to have been convicted of a crime for us to pursue their assets."

      That's the first thing they want everyone to know?

      • "Basically, we're thugs with authorization from the government to steal the assets of anyone we want" would pretty much mean the same thing.

        • by ahodgson ( 74077 )

          Pretty much. Just like cops stealing cash from anyone they stop on US freeways.

          • by NFN_NLN ( 633283 )

            > like cops stealing cash

            It's not stealing, it's civil forfeiture. Just like, we didn't 'rig the election' we 'fortified the election'. So 'legal' in both cases.

  • Is the bar so low? How culturally embarrassing.

  • Okay but now go after the carriers who facilitate this by making it too easy to get a new SIM issued for a number, and providing inadequate controls for consumers.

    Which is most of them.

  • by rduke15 ( 721841 ) <(rduke15) (at) (gmail.com)> on Wednesday February 10, 2021 @05:46PM (#61048786)

    they tricked US mobile operators into assigning a celebrity's phone number to a new SIM card

    How does that work? I don't understand. Why would an operator assign an existing number to a new SIM card without verifying the person's identity?

    I once had lost my phone. Had to go to the carrier's shop, and show my ID before they de-activated my old SIM and gave me a new one.

  • Because non-celebrities are equally not happy with being the victim of criminal activities.

  • Meanwhile in spite of this, Amazon emailed everyone to inform them that starting soon Blink cameras will be behind mandatory 2-factor that uses, you guessed it, SMS. Probably won't matter for a nobody like me, but still. Unless I'm wrong, the email made no mention of an alternative such as your own ToTP solution.

C'est magnifique, mais ce n'est pas l'Informatique. -- Bosquet [on seeing the IBM 4341]

Working...