“On October 26, 2018 a hacker stole $1M from me, and the crime was made possible by AT&T.”
The hacker convinced, or bribed, an AT&T customer service rep to change my SIM number to work with his phone.
AT&T gave him control of my mobile service and then all text messages to my number went to the hacker’s phone.
This cybercrime is called a fraudulent “SIM swap”. Because of AT&T, the hacker was then able to take control of my Gmail by clicking “forgot password”, which sent a text to the hacker’s phone instead of mine to reset my email password. In minutes, I lost control of my mobile service, email and several other accounts. Then he logged into my financial accounts and used my $1M in US dollars to buy Bitcoin with my $1M and sent it all to himself. He also got picture perfect copies of my birth certificate, passport and driver’s license. This all happened in 20 minutes, and all because of AT&T and a 21-year old criminal. This was most of my life savings and it’s been devastating to my family.
SIM crime is happening to thousands of victims across the major carriers. Law enforcement can arrest and convict the criminals, but we must stop the carriers. StopSIMCrime is raising money to help victims take legal action to get the mobile carriers to change their ways, and to get our money back. We are also advocating for new laws to force the mobile carriers to stop giving control of our mobile service to criminals.
“Please donate to ensure this does not happen to you.
Thank you for your support.”
American telecom giant AT&T is being sued after one of its customers was allegedly scammed out of cryptocurrency in a SIM swap attack. Jamarquis Etheridge, a Texas, US-based man sued AT&T after he lost cryptocurrency tokens worth $560,000 (roughly Rs. 4 crores) from an account linked to his phone number. As per reports, Etheridge fell prey to a SIM Swap attack in which scammers dig out the numbers of potential victims and get them changed by network operators. After losing his Ether (ETH) tokens, Etheridge decided to take legal action against AT&T, questioning its user security provisions and demanding compensation
A customer of AT&T lost his fund because of the sim swap attack. Victim claimed that the company is aware about such kind of scams but still they authorised the hacker to access the account.
On Wednesday, a Texas resident filed suit against mobile carrier AT&T for violations of state law. The complaint accuses AT&T Inc. of failing to safeguard the plaintiff’s information in connection with a SIM swap that it permitted to occur, allegedly exposing the plaintiff to cryptocurrency theft and indeed causing hackers to empty his exchange account.
For years, security experts have encouraged developers to protect their applications by implementing multi-factor authentication (MFA) as an additional layer of cybersecurity other than passwords. But unfortunately, this has proven to be inadequate. According to a survey conducted by Sift, account hijacking scams increased by 250% in 2020, despite the addition of MFA.
The UK’s high street banks have been called out for “shockingly low” reimbursement rates for Authorized Push Payment (APP) fraud. APP fraud is an increasingly popular type of scam in which the fraudster — posing as a trusted entity such as a family member or business — tricks the victim into transferring money to a bank account under their control. It cost an estimated £479m in 2020.
SMS is often used as a carrier to send one-time passwords (OTP) to provide additional security for two-factor authentication when digital consumers access web or mobile applications. Unfortunately, SMS carrying an OTP is not enough. As hackers become more sophisticated, it’s becoming easier for them to compromise web or mobile applications with a wide range of out-of-band exploitation techniques that include carrier sniffing (SS7 attacks), malware (acting as a man-in-the-middle) and social engineering tactics (conveniently performing SIM swap fraud), all of which can successfully compromise security and grant fraudsters access to sensitive data.
Donations to StopSIMCrime are used to raise awareness by supporting this website, travel to present at events, help victims recover their money, and stop carriers from giving our service to criminals.
A portion of your donation may be used to provide funding for lawsuits against the carriers and criminals. Because the carriers’ Terms of Service do not allow for legal class actions, each victim must take action individually, which may benefit victim individual. For that reason, we are not able to get tax-exempt status. To be clear, your donation is not tax deductible. However, our intention is that our collective efforts through your support will compel the carriers to fix the problem.