BPOI Banner
$412 Million Lost to Hacks in Q3 2024, Yet Overall Safety Improves $412 Million Lost to Hacks in Q3 2024, Yet Overall Safety Improves

Smishing Scam Leads to $11 Million Crypto Heist

A group of cybercriminals called Scattered Spider have been charged with orchestrating an $11 million phishing operation that breached corporations and sacked millions in cryptocurrency.

US authorities revealed charges against five individuals accused of masterminding the scheme. The scheme targeted employees of companies across the country, exploiting their credentials to gain access to sensitive data and personal crypto wallets.

Crypto Cartel Uses Smishing to Extort $11 Million

The operation relied on an attack vector as simple as it was insidious: SMS phishing, or “smishing.” Between September 2021 and April 2023, employees received text messages that appeared to come from their employers or affiliated IT vendors.

The messages warned of impending account deactivations and directed recipients to bogus websites disguised as legitimate company portals. Here, employees unwittingly handed over their login credentials, giving the hackers the keys to unlock both corporate networks and, eventually, crypto wallets.

Court documents paint a detailed picture of the group’s precision. First, they duped employees into sharing their information, and then they bypassed two-factor authentication, tricking victims into approving login attempts. This allowed the hackers to infiltrate corporate systems, steal intellectual property, and gather troves of personal data. But the heist didn’t end there.

The stolen information became the foundation for a secondary assault — this time on individual cryptocurrency accounts. The group allegedly used their stolen data to drain $11 million in digital assets from unsuspecting crypto holders.

“Here’s how threat actors, such as SCATTERED SPIDER, conduct vishing (phone call phishing) attacks to trick victims into sharing sensitive information, such as login credentials, financial details, or security codes. These attackers often pose as trusted entities, like IT support, creating a sense of urgency to manipulate their targets into compliance,” an X crypto influencer said.

The accused are young, tech-savvy individuals with diverse online identities. One of them is 23-year-old Ahmed Hossam Eldin Elbadawy, known as ‘AD. Another is 20-year-old Noah Michael Urban, who used aliases like “Sosa” and “Elijah.”

Also involved are 20-year-old Evans Onyeaka Osiebo and 25-year-old Joel Martin Evans, called “joeleoli,” both based in the US. Lastly, 22-year-old Tyler Robert Buchanan resides in the UK. Authorities in the United States have already made arrests, including a defendant, Urban, who is also facing separate fraud charges in Florida.

The legal repercussions are significant. If convicted, the defendants could face up to 20 years in federal prison for conspiracy to commit wire fraud, additional sentences for related charges, and mandatory prison time for identity theft. For Tyler Buchanan, wire fraud charges alone could add decades to his potential sentence.

As decentralized assets grow in popularity, so too does the ingenuity of those seeking to exploit them. This case warns corporations and crypto users to stay alert against phishing and strengthen security measures. In a digital world where trust holds value, complacency comes at a high and sometimes devastating cost.

Disclaimer

In adherence to the Trust Project guidelines, BeInCrypto is committed to unbiased, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify facts independently and consult with a professional before making any decisions based on this content. Please note that our Terms and ConditionsPrivacy Policy, and Disclaimers have been updated.

Source link

Farah Ibrahim

https://beincrypto.com/five-charged-in-crypto-smishing-operation/

2024-11-21 16:28:05

bitcoin
Bitcoin (BTC) $ 99,272.60 2.29%
ethereum
Ethereum (ETH) $ 3,370.91 7.38%
tether
Tether (USDT) $ 1.00 0.00%
solana
Solana (SOL) $ 259.80 7.28%
bnb
BNB (BNB) $ 628.91 2.57%
xrp
XRP (XRP) $ 1.37 23.25%
dogecoin
Dogecoin (DOGE) $ 0.392333 1.77%
usd-coin
USDC (USDC) $ 0.999991 0.04%
staked-ether
Lido Staked Ether (STETH) $ 3,371.07 7.41%
cardano
Cardano (ADA) $ 0.861911 9.73%
tron
TRON (TRX) $ 0.198565 0.11%
avalanche-2
Avalanche (AVAX) $ 35.93 4.87%
shiba-inu
Shiba Inu (SHIB) $ 0.000025 2.29%
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 99,163.57 2.54%
wrapped-steth
Wrapped stETH (WSTETH) $ 3,998.85 7.57%
the-open-network
Toncoin (TON) $ 5.50 0.24%
sui
Sui (SUI) $ 3.55 0.75%
bitcoin-cash
Bitcoin Cash (BCH) $ 493.60 5.98%
weth
WETH (WETH) $ 3,371.22 7.41%
chainlink
Chainlink (LINK) $ 15.27 3.88%
pepe
Pepe (PEPE) $ 0.000021 7.91%
polkadot
Polkadot (DOT) $ 6.12 7.14%
stellar
Stellar (XLM) $ 0.279582 16.64%
leo-token
LEO Token (LEO) $ 8.80 3.72%
near
NEAR Protocol (NEAR) $ 5.70 3.51%
litecoin
Litecoin (LTC) $ 89.53 0.59%
aptos
Aptos (APT) $ 11.93 2.71%
wrapped-eeth
Wrapped eETH (WEETH) $ 3,555.57 7.70%
uniswap
Uniswap (UNI) $ 9.36 5.47%
usds
USDS (USDS) $ 0.999453 0.31%
crypto-com-chain
Cronos (CRO) $ 0.191152 8.81%
hedera-hashgraph
Hedera (HBAR) $ 0.129043 2.78%
internet-computer
Internet Computer (ICP) $ 9.54 5.36%
ethereum-classic
Ethereum Classic (ETC) $ 27.94 4.29%
bonk
Bonk (BONK) $ 0.000051 2.45%
kaspa
Kaspa (KAS) $ 0.150511 1.25%
render-token
Render (RENDER) $ 7.32 1.15%
ethena-usde
Ethena USDe (USDE) $ 1.00 0.02%
bittensor
Bittensor (TAO) $ 499.66 3.51%
polygon-ecosystem-token
POL (ex-MATIC) (POL) $ 0.4587 4.29%
whitebit
WhiteBIT Coin (WBT) $ 24.84 2.95%
mantra-dao
MANTRA (OM) $ 3.92 9.80%
dai
Dai (DAI) $ 0.999846 0.05%
fetch-ai
Artificial Superintelligence Alliance (FET) $ 1.26 2.82%
dogwifcoin
dogwifhat (WIF) $ 3.28 2.56%
arbitrum
Arbitrum (ARB) $ 0.780555 10.62%
monero
Monero (XMR) $ 160.34 0.13%
blockstack
Stacks (STX) $ 1.93 0.18%
mantle
Mantle (MNT) $ 0.837013 13.55%
filecoin
Filecoin (FIL) $ 4.63 3.13%