Thursday, October 10, 2024
HomeCyber AttackSerial ‘SIM Swapper’ Sentenced to Eight Years in Prison

Serial ‘SIM Swapper’ Sentenced to Eight Years in Prison

Published on

In a digital age marred by deceit, 25-year-old Amir Hossein Golshan stands as a testament to the dark underbelly of cyberspace. 

Hailing from downtown Los Angeles, Golshan’s intricate orchestration of fraudulent schemes has earned him a federal prison sentence of 96 months. 

His exploits, spanning from April 2019 to February 2023, encompassed a range of online scams, leaving a trail of financial ruin and emotional turmoil for countless victims.

- Advertisement - EHA

Golshan’s arsenal included the sophisticated tactic of SIM swapping, a method by which he coerced mobile carriers into transferring victims’ phone numbers to SIM cards under his control. 

This cunning maneuver granted him unauthorized access to victims’ online accounts by intercepting two-factor authentication codes.

Document
Free Webinar

Live API Attack Simulation Webinar

In the upcoming webinar, Karthik Krishnamoorthy, CTO and Vivek Gopalan, VP of Products at Indusface demonstrate how APIs could be hacked. The session will cover: an exploit of OWASP API Top 10 vulnerability, a brute force account take-over (ATO) attack on API, a DDoS attack on an API, how a WAAP could bolster security over an API gateway

Social Media Subterfuge

Venturing into the realm of social media, Golshan seized control of victims’ accounts, leveraging them for nefarious ends, reads the Attorney’s report.

Impersonating the account owners, he manipulated friends and followers, coercing them into unwittingly participating in money transfers that lined his pockets.

Golshan’s deceptive prowess extended to falsely advertising non-existent Instagram services, ensnaring individuals who believed in his deceptive offerings. 

The financial fallout of his fictitious promises resulted in unsuspecting victims sending payments for services that were never intended to materialize.

Apple Support Artifice

Pretending to be a representative of Apple Support, Golshan artfully deceived victims into divulging their iCloud account credentials. 

Armed with this information, he orchestrated thefts of valuable digital property, including NFTs and cryptocurrency, plunging victims into the heart of the digital abyss.

Golshan’s fraudulent escapades exacted a heavy toll, with victims collectively losing a staggering $740,000. 

Beyond the monetary impact, the emotional distress inflicted upon his targets left them grappling with vulnerability, fear, and anxiety in the aftermath of his calculated attacks.

Facing the consequences of his actions, Golshan pleaded guilty to federal charges, including unauthorized access to protected computers, wire fraud, and computer fraud to obtain value. 

Alongside a 96-month prison sentence, he was ordered to pay $1,218,526 in restitution to his victims, underscoring the severity of his transgressions.

Golshan’s case serves as an ominous reminder of the escalating threat posed by online fraud. 

As society leans more heavily on digital platforms, a call to exercise caution reverberates. 

The digital landscape demands proactive steps to protect oneself, from refraining from sharing personal information with unverified sources to staying vigilant against the latest online scams and threats.

In this era of interconnectedness, the tale of Amir Hossein Golshan serves as a stark wake-up call, urging individuals to fortify their digital defenses against the ever-evolving specter of cyber deception.

Experience how StorageGuard eliminates the security blind spots in your storage systems by trying a 14-day free trial.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Hackers Exploiting Zero-day Flaw in Qualcomm Chips to Attack Android Users

Hackers exploit a zero-day vulnerability found in Qualcomm chipsets, potentially affecting millions worldwide.The flaw,...

Foxit PDF Reader Vulnerability Let Attackers Execute Arbitary Code

Researchers recently disclosed six new security vulnerabilities across various software, as one critical vulnerability...

Wireshark 4.4.1 Released, What’s new!

Wireshark, the world’s leading network protocol analyzer, has just released version 4.4.1, bringing a...

Multiple VMware NSX Vulnerabilities Let Attackers Gain Root Access

VMware has disclosed multiple vulnerabilities in its NSX product line that could potentially allow...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Hackers Exploiting Zero-day Flaw in Qualcomm Chips to Attack Android Users

Hackers exploit a zero-day vulnerability found in Qualcomm chipsets, potentially affecting millions worldwide.The flaw,...

Foxit PDF Reader Vulnerability Let Attackers Execute Arbitary Code

Researchers recently disclosed six new security vulnerabilities across various software, as one critical vulnerability...

Wireshark 4.4.1 Released, What’s new!

Wireshark, the world’s leading network protocol analyzer, has just released version 4.4.1, bringing a...