Latest news with #SIMswap
Yahoo
07-07-2025
- Yahoo
B.C. woman lost over $500K in bitcoin in 2021 SIM swap fraud scheme, lawsuit alleges
A judge has ordered a B.C. woman who allegedly lost $530,000 worth of bitcoin in a "SIM swap" fraud scheme to resolve her lawsuit out of the courts. Raelene Vandenbosch began a suit in 2023 against her cellphone company and a mobile kiosk company in Quebec after a scammer posed as a technician to gain the trust of a kiosk clerk, then accessed Rogers' customer records. Rogers Communications, Match Transact Inc. — the company that owned the mobile kiosk., WOW! mobile boutique — a "John Doe Mobile Clerk" and "John Doe Hacker" are all named as defendants. A decision filed in June in the Supreme Court of British Columbia says the hacker convinced the kiosk clerk to enable screen sharing with the scammer, giving the hacker access to Rogers' customer database, including Vandenbosch's personal information. "The hacker performed a SIM swap on the plaintiff's Rogers' account and quickly gained access to her phone number, phone and internet accounts, including the plaintiff's cryptocurrency account," Justice Anita Chan wrote in the decision. Shortly after the SIM swap, the hacker withdrew bitcoin from two of her cryptocurrency accounts, the decision reads. "The plaintiff alleges the lost bitcoins were valued at approximately $534,530 at the time of the theft and were valued at approximately $1 million shortly after." Roger Gale, educational lead of digital transformation and cybersecurity at the B.C. Institute of Technology (BCIT), said a SIM swap is a type of fraud where a scammer moves a victim's phone number to a new SIM card that is controlled by the fraudster. "What you're trying to do when you're doing a SIM swap is move the telephone number from that SIM that's in your phone to another SIM that you recode at the kiosk," Gale said. "If you do a SIM swap, you're not controlling their phone. You've got their phone, so you are them." SIM swap scams can allow hackers to exploit two-step authentication processes, he said. It's difficult to recover stolen cryptocurrency or identify a person who is using it, Gale said. "Once you transfer out the cryptocurrency from the person's wallet, it goes into your wallet and there's only the transaction that is recorded," he said. "That wallet is not necessarily associated with anything with you. It doesn't necessarily have any association with you except that you use it." Vandenbosch claimed damages against Rogers under B.C. laws for breach of privacy, breach of contract, negligence and statutory causes of action under the Business Practices and Consumer Protection Act (BPCPA). Rogers and Match Transact Inc. argued the lawsuit should be stayed in favour of arbitration of all of the plaintiff's claims, except for claims under the BPCPA. Rogers sought to enforce the arbitration clause included in its wireless services agreement and its terms of service, the decision says. Justice Chan stayed the lawsuit in favour of arbitration. A spokesperson for Rogers did not confirm if and when arbitration would begin between the company and the plaintiff. Match Transact Inc. did not respond to requests for comment at the time of writing. The plaintiff's lawyers declined to comment. The Canadian Telecommunications Association (CTA) told CBC News in a written statement that while phone companies have taken steps to mitigate SIM swaps, the association would not disclose specific methods in order to protect the information from hackers. "Our members take this issue very seriously and, as fraudsters evolve their techniques, they continually strengthen their security measures and verification procedures to protect Canadians," a CTA spokesperson wrote.
CBC
07-07-2025
- CBC
B.C. woman lost over $500K in bitcoin in 2021 SIM swap fraud scheme, lawsuit alleges
A judge has ordered a B.C. woman who allegedly lost $530,000 worth of bitcoin in a "SIM swap" fraud scheme to resolve her lawsuit out of the courts. Raelene Vandenbosch began a suit in 2023 against her cellphone company and a mobile kiosk company in Quebec after a scammer posed as a technician to gain the trust of a kiosk clerk, then accessed Rogers' customer records. Rogers Communications, Match Transact Inc. — the company that owned the mobile kiosk., WOW! mobile boutique — a "John Doe Mobile Clerk" and "John Doe Hacker" are all named as defendants. A decision filed in June in the Supreme Court of British Columbia says the hacker convinced the kiosk clerk to enable screen sharing with the scammer, giving the hacker access to Rogers' customer database, including Vandenbosch's personal information. "The hacker performed a SIM swap on the plaintiff's Rogers' account and quickly gained access to her phone number, phone and internet accounts, including the plaintiff's cryptocurrency account," Justice Anita Chan wrote in the decision. Shortly after the SIM swap, the hacker withdrew bitcoin from two of her cryptocurrency accounts, the decision reads. "The plaintiff alleges the lost bitcoins were valued at approximately $534,530 at the time of the theft and were valued at approximately $1 million shortly after." What is a SIM swap? Roger Gale, educational lead of digital transformation and cybersecurity at the B.C. Institute of Technology (BCIT), said a SIM swap is a type of fraud where a scammer moves a victim's phone number to a new SIM card that is controlled by the fraudster. "What you're trying to do when you're doing a SIM swap is move the telephone number from that SIM that's in your phone to another SIM that you recode at the kiosk," Gale said. "If you do a SIM swap, you're not controlling their phone. You've got their phone, so you are them." SIM swap scams can allow hackers to exploit two-step authentication processes, he said. It's difficult to recover stolen cryptocurrency or identify a person who is using it, Gale said. "Once you transfer out the cryptocurrency from the person's wallet, it goes into your wallet and there's only the transaction that is recorded," he said. "That wallet is not necessarily associated with anything with you. It doesn't necessarily have any association with you except that you use it." Vandenbosch claimed damages against Rogers under B.C. laws for breach of privacy, breach of contract, negligence and statutory causes of action under the Business Practices and Consumer Protection Act (BPCPA). Rogers and Match Transact Inc. argued the lawsuit should be stayed in favour of arbitration of all of the plaintiff's claims, except for claims under the BPCPA. Rogers sought to enforce the arbitration clause included in its wireless services agreement and its terms of service, the decision says. Justice Chan stayed the lawsuit in favour of arbitration. A spokesperson for Rogers did not confirm if and when arbitration would begin between the company and the plaintiff. Match Transact Inc. did not respond to requests for comment at the time of writing. The plaintiff's lawyers declined to comment. The Canadian Telecommunications Association (CTA) told CBC News in a written statement that while phone companies have taken steps to mitigate SIM swaps, the association would not disclose specific methods in order to protect the information from hackers. "Our members take this issue very seriously and, as fraudsters evolve their techniques, they continually strengthen their security measures and verification procedures to protect Canadians," a CTA spokesperson wrote.
Yahoo
17-06-2025
- Business
- Yahoo
Inland Cellular Deploys ClearSky's SNAP Technology to Combat SIM Swap Fraud and Secure SMS Authentication
ORLANDO, Fla., June 17, 2025 /PRNewswire/ -- ClearSky Technologies today announced a strategic partnership with Inland Cellular to deploy SNAP (Silent Network Authentication Platform), an advanced anti-fraud solution designed to prevent SIM swap attacks and strengthen SMS as a trusted communication channel. The implementation provides real-time fraud protection for Inland Cellular subscribers while creating new revenue opportunities through enhanced A2P messaging security. SIM swap fraud has emerged as a critical security threat for wireless carriers and their subscribers. Traditional SMS authentication systems only verify message delivery without confirming recipient identity, creating a significant vulnerability that fraudsters exploit to intercept one-time passwords and gain unauthorized access to sensitive accounts. SNAP addresses this vulnerability by validating device and SIM activity in real-time before one-time passcodes are released. The system silently checks critical network data points including SIM age, device status, and high-risk indicators without adding complexity for end users. "At Inland Cellular, digital security is a top priority. We've been actively searching for a solution that not only safeguards our customers and shields our network but also creates potential revenue opportunities. SNAP provides a comprehensive solution we've been looking for," said Eric Law, Chief Technology Officer at Inland Cellular. The integration with Inland Cellular's existing infrastructure will be completed with minimal disruption, requiring no new hardware or network re-architecture. SNAP establishes secure connections with the carrier's core network elements to monitor authentication queries from enterprise applications in real-time. "ClearSky has been at the forefront of delivering next-generation messaging and security solutions to regional carriers. Their commitment to innovation and consistent track record of success make them an ideal partner," said Josh Eckert, Business Development Director at Inland Cellular. "With SNAP, we're enhancing network security, protecting our customers, and helping restore confidence in SMS as a trusted communication channel, increasing our opportunities for A2P revenue." The partnership comes at a critical time as SMS-based fraud continues to rise across the telecommunications industry, leading to increased customer support tickets, account recovery requests, and diminishing trust in SMS security. For regional carriers like Inland Cellular, implementing advanced security measures is essential to maintain SMS as a viable authentication channel. "We're proud to partner with Inland Cellular to bring real-time fraud protection to their subscribers through SNAP," said Ron Willett, VP & GM of ClearSky Technologies. "SIM swap attacks continue to threaten both customers and messaging revenue, and carriers need tools that work at the network level without adding complexity. Inland's proactive approach to security makes them a strong partner, and we're excited to support their efforts to keep SMS both trusted and profitable." About Inland CellularInland Cellular is a regional wireless service provider committed to delivering reliable connectivity and exceptional customer service to communities across its service area. With a focus on innovation and security, Inland Cellular continues to invest in advanced technologies that enhance the customer experience while protecting subscriber data. For more information, visit About ClearSky TechnologiesClearSky Technologies, headquartered in Orlando, FL, empowers wireless operators to turn messaging into revenue, block fraud at the source, and deploy future-ready solutions without disrupting their networks. With over 20 years in the telecom industry, ClearSky delivers trusted products with an emphasis on security and ease of deployment through its industry-leading revenue share model. For more information, visit View original content to download multimedia: SOURCE ClearSky Technologies, Inc Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Phone Arena
09-06-2025
- Phone Arena
Latest T-Life update gives T-Mobile customers the freedom they have longed for
T-Mobile For months, signs have been appearing that T-Mobile will re-enable the capability to change SIM cards on your own and that day is finally protect its customers from SIM hijacking,disabled self-service SIM swaps in 2022. This was irritating for customers, as with no option to change the SIM attached to their number digitally, they were forced to reach out to customer service representatives or go to a store to swap their SIM latest T-Life update has reinstated the feature, per. The company has been putting measures in place to thwart SIM swap attack attempts and apparently now feels confident enough to bring back the T-Life app offers an easy way to change the SIM card associated with your number. All you have to do is tap on manage, select the line you want to change, and select "SIM transfer or activation" under "Manage your SIM." After that, you will be guided through the will also be required to input the IMEI of the device you are switching to, probably to help the app recognize whether the phone supports eSIM, physical SIMs, or both, and take the next step accordingly. If a device supports both, you will be asked to choose the preferred SIM that, the app will ask you to enter either the EID (unique eSIM identifier) or ICCID (unique physical SIM card number identifier) for the SIM. After confirmation, a review page will be displayed, and you will be feature appears to be fully functional, but it's only available to iPhone users for now. It will probably reach Android users once the Android version is updated.
Phone Arena
08-06-2025
- Phone Arena
AT&T customer's birthdates, social security numbers show up online in plain text
AT&T subscribers need to be on alert. Back in 2024, 86 million records belonging to customers of the nation's third-largest carrier were supposedly stolen by the ShinyHunters group. The hackers were able to take advantage of major security flaws to access and steal the data. The database might have been repackaged and has turned up twice recently on a Russian cybercrime forum. It first appeared on May 15th of this year and showed up again on June 3rd, less than a week ago, and it has been spotted on other forums since then. According to the leaked data recently posted includes data points that by themselves could help expose AT&T customers. But putting the data all together can create customer account profiles that can be used for malicious purposes. The data can be used to help the hackers commit identity theft and take other fraudulent actions. In theory, the cyber crooks could use this data to request new SIM cards and perform a SIM swap. AT&T customer records stolen in a 2024 data breach are recently posted online. | Image By putting a requested SIM card replacement into a burner phone, the hackers could take control of an AT&T customer's phone, change all of the passwords, and clean out the victim's financial accounts. The data breach covers tens of millions of AT&T customers. The data stolen in the attack and posted online includes: Full names Date of birth Phone numbers Email addresses Physical addresses 44 Million Social Security Numbers (SSN) Even though the Date of Birth and Social Security numbers were originally encrypted, they are now in plain text. If you are an AT&T customer, your social security number might have leaked making this an extremely serious threat even if this repackaged data was stolen over a year ago. Screenshot of stolen data belonging to AT&T customers. | Image AT&T responded to the news by releasing the following statement: "It is not uncommon for cybercriminals to repackage previously disclosed data for financial gain. We just learned about claims that AT&T data is being made available for sale on dark web forums, and we are conducting a full investigation." The wireless provider added, "After analysis by our internal teams as well as external data consultants, we are confident this is repackaged data previously released on the dark web in March 2024. Affected customers were notified at that time. We have notified law enforcement of this latest development." If you are an AT&T customer, it is likely that your data was already leaked last year. Still, to be safe, even if AT&T reset your passwords or passcodes last year, you might want to do it again. Set up fraud alerts and change your credentials for financial apps including those you use for banking, stock trading, and your crypto holdings. Switch to Total 5G+ Unlimited 3-Month plan or Total 5G Unlimited and get a free iPhone. We may earn a commission if you make a purchase This offer is not available in your area.
