{"id":10230,"date":"2023-08-04T18:40:40","date_gmt":"2023-08-04T18:40:40","guid":{"rendered":"https:\/\/nft.runfyers.com\/index.php\/2023\/08\/04\/understanding-sim-swap-attacks-and-how-to-safeguard-yourself\/"},"modified":"2023-08-04T18:40:40","modified_gmt":"2023-08-04T18:40:40","slug":"understanding-sim-swap-attacks-and-how-to-safeguard-yourself","status":"publish","type":"post","link":"https:\/\/nft.runfyers.com\/index.php\/2023\/08\/04\/understanding-sim-swap-attacks-and-how-to-safeguard-yourself\/","title":{"rendered":"Understanding SIM Swap Attacks and How to Safeguard Yourself"},"content":{"rendered":"

<\/p>\n

\n

In a proactive move to safeguard consumers from emerging digital threats, the U.S. Federal Communications Commission (FCC) has proposed new regulations aimed at curbing the rise of \u201cSIM swap\u201d and \u201cport-out scams.\u201d <\/p>\n

These malicious activities have been on the rise, with fraudsters exploiting vulnerabilities in mobile communication systems to gain unauthorized access to victims\u2019 personal and financial information.<\/p>\n

What is a \u201cSIM Swap\u201d attack?<\/h2>\n

SIM swapping occurs when scammers or a bad faith actor happens to get their hands on either your phone number or your phone\u2019s SIM card, allowing them to access your accounts or \u201creroute\u201d that now stolen SIM card to a phone that is now in that scammer\u2019s hands (port-out scam).<\/p>\n

Once your phone number has been rerouted to that hacker\u2019s phone, this allows them to now take advantage of a weakness in your \u201ctwo-factor authentication\u201d (2FA) and verification by using your phone number to access your accounts \u2013 ranging from your social media accounts and banking accounts to your crypto accounts\/wallets, any other online website or platform that requires you to enter a username and password.<\/p>\n

Notable examples<\/h2>\n

Over the course of the past few years, SIM swap attacks have witnessed a monumental surge, most notably in 2018 when crypto investor Michael Terpin fell victim to a $23.8 million SIM swap attack<\/a> that was perpetrated by an 18-year-old living in New York named Ellis Pinsky.\u00a0<\/p>\n

Terpin is also the co-founder of the blockchain public relations firm Transform Group, as well as the crypto investor network BitAngels.<\/p>\n

Through his legal counsel, Terpin filed a lawsuit against his phone carrier, AT&T, alleging that the telecom giant had failed to conduct their due diligence and helped facilitate the SIM swap scheme that resulted in him losing close to $2 million in various crypto assets through negligence, breach of contract, and violation of the Communications Act.<\/p>\n

However, a California judge just ruled in favor of AT&T<\/a> after six years of pending litigation back in April, determining that there was no evidence to support Terpin\u2019s claims.\u00a0<\/p>\n

British hacker Joseph O\u2019Connor, known as \u201cPlugwalkJoe,\u201d was sentenced to five years in U.S. prison after stealing $794,000 in cryptocurrency through a SIM swap attack in 2019. Arrested in Spain in 2021 and later extradited to the U.S., O\u2019Connor pleaded guilty to multiple charges, including conspiracy to commit computer intrusions, wire fraud, and money laundering.<\/p>\n

Quite a few brands and individual accounts<\/a> across the Crypto and NFT space have fallen victims to these attacks over the past year as well. <\/p>\n

\n
\n
\n
\n
\n

And\u2026 we’re back in. This was basically my life for the past 24 hours. Luckily we saw hack immediately and the battle began pic.twitter.com\/pjrkMfQ2vT<\/a><\/p>\n

\u2014 Bryan Pellegrino (@PrimordialAA) July 5, 2023<\/a><\/p><\/blockquote>\n<\/div>\n<\/figure>\n<\/div>\n

\n
\n
\n
\n

Our Twitter has been compromised please do not interact with any links<\/p>\n

\u2014 Gutter Mitch (@GutterMitch) July 7, 2023<\/a><\/p><\/blockquote>\n<\/div>\n<\/figure>\n<\/div>\n<\/div>\n

Congress and the FCC<\/h2>\n

Congress and the FCC have spent a long time working on how to best minimize and prevent SIM swap attacks. On July 11, the FCC announced its commitment in protecting consumers from what it termed as \u201cugly new frauds<\/a>.\u201d\u00a0<\/p>\n

The proposed rules are designed to make it increasingly challenging for malicious actors to execute these scams, thereby enhancing the security of mobile users across the country.<\/p>\n

Differentiating SIM swap scams, the FCC also called attention to \u201cPort-out scams,\u201d which involve the unauthorized transfer of a victim\u2019s phone number to a different carrier, again giving the scammer potential access to sensitive accounts.<\/p>\n

The rise of these scams has been a cause for concern, with numerous reports highlighting the significant financial and emotional toll they have taken on victims. The FCC\u2019s proposed regulations are a response to this growing threat, signaling the agency\u2019s recognition of the need for robust preventive measures.<\/p>\n

While the specifics of the proposed rules were not detailed in the FCC announcement, it is anticipated that they will involve stricter verification processes for SIM swaps and port-outs. This could include mandatory multi-factor authentication, tighter security questions, and enhanced communication between mobile carriers and their customers regarding any changes to their accounts.<\/p>\n

The FCC\u2019s move is in line with a broader trend of regulatory bodies worldwide taking steps to address the challenges posed by the digital age, including the SEC and CFTC in the U.S., and the EU with respect to cryptocurrency regulation, to name a few.<\/p>\n

How To Safeguard Yourself <\/h2>\n

Warning signs of a SIM swap <\/a>include inability to make calls or send texts, notifications of activity on a different device, inability to access accounts, and unfamiliar transactions on your financial statements. Spotting these signs early can help mitigate potential harm. Fortunately there are steps you can take to further protect yourself:<\/p>\n