Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Security Privacy

Ransomware Crooks Now SIM Swap Executives' Kids To Pressure Their Parents (theregister.com) 13

An anonymous reader quotes a report from The Register: Ransomware infections have morphed into "a psychological attack against the victim organization," as criminals use increasingly personal and aggressive tactics to force victims to pay up, according to Google-owned Mandiant. "We saw situations where threat actors essentially SIM swap the phones of children of executives, and start making phone calls to executives, from the phone numbers of their children," Charles Carmakal, Mandiant's CTO, recounted during a Google Security Threat Intelligence Panel at this year's RSA Conference in San Francisco on Monday.

"Think about the psychological dilemma that the executive goes through – seeing a phone call from the children, picking up the phone and hearing that it's somebody else's voice? Sometimes, it's caller ID spoofing. Other times, we see demonstrated SIM swapping family members." Either way, it's horrifying. It's the next step in the evolution of ransomware tactics, which have now moved far beyond simply encrypting victims' files and even stealing their data. "There are a few threat actors that really have no rules of engagement in terms of how far [they] try to coerce victims," Carmakal noted, recalling ransomware incidents in which the criminals have directly contacted executives, their family members, and board members at their homes.

The criminals have moved from just staging an attack against a company, its customers and their data, and becomes "more against the people," he added. It changes the calculation involved in deciding whether to pay the extortion demand, Carmakal said. "It's less about 'do I need to protect my customers?' But more about 'how do I better protect my employees and protect the families of employees?' That's a pretty scary shift."

This discussion has been archived. No new comments can be posted.

Ransomware Crooks Now SIM Swap Executives' Kids To Pressure Their Parents

Comments Filter:
  • by evanh ( 627108 ) on Wednesday May 08, 2024 @07:20PM (#64458197)

    a regular worker for a change. If they got a more sane pay packet, I might feel for them more.

    • Bro, I fucking laughed *hard* in the most schadenfreude-like tone you can imagine when I saw this story. Yes, yes, I'm a bad person and I'm going to hell. Save your mod points.
    • My thought exactly. The last line was a hoot: " But more about 'how do I better protect my employees and protect the families of employees?' That's a pretty scary shift." - company leaders care about protecting employees and their families? That's a lie.
  • "essentially SIM swapping" ... so they are NOT SIM swapping. Makes me think Charles Carmakal is the "talking head" type of CTO and not the tech type of CTO.
  • "have no rules of engagement"... Since when did any of them have rules? They've gone after children, elderly, and medically disabled people in dire straits, and we should worry about the millionaires kids!!?!!
    • They are sim-swapping. The kids are likely not in danger. However, what I find funny is that it's not going to take long for the scammers to AI-fake the kids voice. "Daddy, the bad man has a knife to my vagina and says I'm about to start feeling steel if you don't pay the ransom!"
      • Re: "Daddy, the bad man has a knife to my vagina and says I'm about to start feeling steel if you don't pay the ransom!" -- Why do I get the impression that this is the tip of the ice-berg of your imagining things to say to your boss?
        • Hahaha. I actually like my boss. However, if you are accusing me of being a sick puppy with lots of crass shit to say at a moment's notice: guilty as charged.
    • The rules of engagement, up until now, were pretty much "don't piss anyone off who could actually get laws changed that keep us from fleecing the flock".

  • by jenningsthecat ( 1525947 ) on Wednesday May 08, 2024 @09:27PM (#64458393)

    TFA claims that "threat actors essentially SIM swap the phones of children of executives", yet doesn't give any details. There are no 'this specific set of events occurred but the names have been changed'. There is no explanation of how the threat actors are SIM swapping kids' phones. There are just a bunch of vague assertions. The entire article - which is really short - comes across as FUD.

    I'm sure that hacking into providers' systems to reassign cell numbers occurs, and it wouldn't surprise me to learn that the people who do that hacking would collaborate with ransomware thugs in order to extort money. But The Register doesn't make a very convincing case for that.

    The article also makes a token mention of regular folks being victimized, but spends the majority of its words lamenting the hardships faced by those poor c-suite occupants. WTF? Way to go Register!

  • It's less about 'do I need to protect my customers?' But more about 'how do I better protect my employees and protect the families of employees?

    Yep, that is definitely the first thing that a CEO would think. Bless them all.

  • by Opportunist ( 166417 ) on Thursday May 09, 2024 @04:03AM (#64458879)

    If it happens to the kids of "important" people, maybe we're gonna see some improvements in security.

The 11 is for people with the pride of a 10 and the pocketbook of an 8. -- R.B. Greenberg [referring to PDPs?]

Working...