BPOI Banner
$412 Million Lost to Hacks in Q3 2024, Yet Overall Safety Improves $412 Million Lost to Hacks in Q3 2024, Yet Overall Safety Improves

Smishing Scam Leads to $11 Million Crypto Heist

A group of cybercriminals called Scattered Spider have been charged with orchestrating an $11 million phishing operation that breached corporations and sacked millions in cryptocurrency.

US authorities revealed charges against five individuals accused of masterminding the scheme. The scheme targeted employees of companies across the country, exploiting their credentials to gain access to sensitive data and personal crypto wallets.

Crypto Cartel Uses Smishing to Extort $11 Million

The operation relied on an attack vector as simple as it was insidious: SMS phishing, or “smishing.” Between September 2021 and April 2023, employees received text messages that appeared to come from their employers or affiliated IT vendors.

The messages warned of impending account deactivations and directed recipients to bogus websites disguised as legitimate company portals. Here, employees unwittingly handed over their login credentials, giving the hackers the keys to unlock both corporate networks and, eventually, crypto wallets.

Court documents paint a detailed picture of the group’s precision. First, they duped employees into sharing their information, and then they bypassed two-factor authentication, tricking victims into approving login attempts. This allowed the hackers to infiltrate corporate systems, steal intellectual property, and gather troves of personal data. But the heist didn’t end there.

The stolen information became the foundation for a secondary assault — this time on individual cryptocurrency accounts. The group allegedly used their stolen data to drain $11 million in digital assets from unsuspecting crypto holders.

“Here’s how threat actors, such as SCATTERED SPIDER, conduct vishing (phone call phishing) attacks to trick victims into sharing sensitive information, such as login credentials, financial details, or security codes. These attackers often pose as trusted entities, like IT support, creating a sense of urgency to manipulate their targets into compliance,” an X crypto influencer said.

The accused are young, tech-savvy individuals with diverse online identities. One of them is 23-year-old Ahmed Hossam Eldin Elbadawy, known as ‘AD. Another is 20-year-old Noah Michael Urban, who used aliases like “Sosa” and “Elijah.”

Also involved are 20-year-old Evans Onyeaka Osiebo and 25-year-old Joel Martin Evans, called “joeleoli,” both based in the US. Lastly, 22-year-old Tyler Robert Buchanan resides in the UK. Authorities in the United States have already made arrests, including a defendant, Urban, who is also facing separate fraud charges in Florida.

The legal repercussions are significant. If convicted, the defendants could face up to 20 years in federal prison for conspiracy to commit wire fraud, additional sentences for related charges, and mandatory prison time for identity theft. For Tyler Buchanan, wire fraud charges alone could add decades to his potential sentence.

As decentralized assets grow in popularity, so too does the ingenuity of those seeking to exploit them. This case warns corporations and crypto users to stay alert against phishing and strengthen security measures. In a digital world where trust holds value, complacency comes at a high and sometimes devastating cost.

Disclaimer

In adherence to the Trust Project guidelines, BeInCrypto is committed to unbiased, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify facts independently and consult with a professional before making any decisions based on this content. Please note that our Terms and ConditionsPrivacy Policy, and Disclaimers have been updated.

Source link

Farah Ibrahim

https://beincrypto.com/five-charged-in-crypto-smishing-operation/

2024-11-21 16:28:05

bitcoin
Bitcoin (BTC) $ 94,847.41 1.95%
ethereum
Ethereum (ETH) $ 3,283.72 1.68%
tether
Tether (USDT) $ 0.998625 0.14%
xrp
XRP (XRP) $ 2.18 1.82%
bnb
BNB (BNB) $ 650.67 1.68%
solana
Solana (SOL) $ 181.23 0.01%
dogecoin
Dogecoin (DOGE) $ 0.31096 1.67%
usd-coin
USDC (USDC) $ 1.00 0.11%
cardano
Cardano (ADA) $ 0.881306 1.27%
staked-ether
Lido Staked Ether (STETH) $ 3,264.82 2.24%
tron
TRON (TRX) $ 0.243883 0.46%
avalanche-2
Avalanche (AVAX) $ 36.50 1.79%
chainlink
Chainlink (LINK) $ 22.13 0.47%
the-open-network
Toncoin (TON) $ 5.39 2.03%
wrapped-steth
Wrapped stETH (WSTETH) $ 3,893.20 1.67%
sui
Sui (SUI) $ 4.37 0.05%
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 94,616.35 1.92%
shiba-inu
Shiba Inu (SHIB) $ 0.000021 0.45%
stellar
Stellar (XLM) $ 0.354942 0.94%
polkadot
Polkadot (DOT) $ 6.82 1.46%
hedera-hashgraph
Hedera (HBAR) $ 0.262035 4.34%
hyperliquid
Hyperliquid (HYPE) $ 28.63 14.96%
weth
WETH (WETH) $ 3,289.15 1.64%
bitcoin-cash
Bitcoin Cash (BCH) $ 443.22 1.73%
leo-token
LEO Token (LEO) $ 9.31 0.02%
uniswap
Uniswap (UNI) $ 13.72 1.83%
litecoin
Litecoin (LTC) $ 100.29 0.44%
pepe
Pepe (PEPE) $ 0.000018 3.06%
wrapped-eeth
Wrapped eETH (WEETH) $ 3,469.00 1.66%
near
NEAR Protocol (NEAR) $ 5.03 0.76%
ethena-usde
Ethena USDe (USDE) $ 0.999834 0.08%
bitget-token
Bitget Token (BGB) $ 4.08 2.45%
usds
USDS (USDS) $ 0.999189 0.40%
aptos
Aptos (APT) $ 9.10 2.90%
aave
Aave (AAVE) $ 320.93 7.47%
internet-computer
Internet Computer (ICP) $ 9.88 0.71%
crypto-com-chain
Cronos (CRO) $ 0.153513 1.50%
polygon-ecosystem-token
POL (ex-MATIC) (POL) $ 0.472152 0.07%
mantle
Mantle (MNT) $ 1.17 0.01%
ethereum-classic
Ethereum Classic (ETC) $ 25.99 0.13%
vechain
VeChain (VET) $ 0.045524 0.93%
render-token
Render (RENDER) $ 7.00 0.86%
monero
Monero (XMR) $ 191.08 3.02%
whitebit
WhiteBIT Coin (WBT) $ 24.36 0.61%
mantra-dao
MANTRA (OM) $ 3.69 2.14%
dai
Dai (DAI) $ 1.00 0.43%
bittensor
Bittensor (TAO) $ 449.46 0.76%
fetch-ai
Artificial Superintelligence Alliance (FET) $ 1.25 0.17%
arbitrum
Arbitrum (ARB) $ 0.744995 0.16%
ethena
Ethena (ENA) $ 1.04 1.58%