Tuesday, October 8, 2024
HomeCyber Attack‘SIM Swapper’ Pleads Guilty For Hacking Instagram User Accounts

‘SIM Swapper’ Pleads Guilty For Hacking Instagram User Accounts

Published on

A 24-year-old man named Amir Hossein Golshan from Downtown Los Angeles has pleaded guilty for hacking Instagram users’ accounts, using a technique called “SIM swapping” to obtain money fraudulently.

The charges consist of illegally accessing a secured computer to acquire data, a single charge of wire fraud, and another charge of accessing a computer for the purpose of obtaining financial benefits.

According to Attorney, he was taken into federal custody last month due to his criminal activities and violation of the terms of his pretrial release.

- Advertisement - EHA

He was involved in the theft from April 2019 to February 2023 by executing multiple online schemes to defraud hundreds of users through various online scams and unauthorized intrusions into victims’ digital accounts, including social media account takeovers, Zelle payment fraud, and impersonating Apple support.

Over the course of several years, hundreds of victims have suffered losses amounting to $740,000.

Pleads Guilty to SIM Swapping

SIM swapping and social media account takeovers:

SIM swapping, also called SIM splitting, or sim jacking, is a fraudulent technique used by hackers to gain control of your phone number; with your phone number, hackers can take advantage of two-factor authentication to gain access to your bank accounts, social media accounts.

Golshan used this technique and targeted both account users and their online friends by tricking them into sending him money.

 Zelle merchant fraud:

In 2019, Golshan falsely claimed that he could obtain verified Instagram badges for a user’s teenage daughter and convinced her to send $300 through electronic payment.

 Apple Support fraud and NFT/cryptocurrency theft:

Golshan impersonates to gain access to several victims’ Apple iCloud accounts to steal NFTs, cryptocurrency, and other valuable digital property; by this, he earned between $2,000 and $389,000 each.

Through this incident, he was sentenced to a maximum of 20 years in federal prison for a wire fraud count and 5 years for a computer access count.

Latest articles

Badge and CyberArk Announce Partnership to Redefine Privacy in PAM and Secrets Management

Partnership aims to help businesses eliminate vulnerable attack surfaces and provide a more streamlined...

LemonDuck Malware Exploiting SMB Vulnerabilities To Attack Windwos Servers

The attackers exploited the EternalBlue vulnerability to gain initial access to the observatory farm,...

Critical Automative 0-Day Flaws Let Attackers Gain Full Control Over Cars

Recent discoveries in the automotive cybersecurity landscape have unveiled a series of critical zero-day...

Likho Hackers Using MeshCentral For Remotely Managing Victim Systems

The Awaken Likho APT group launched a new campaign in June of 2024 with...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

LemonDuck Malware Exploiting SMB Vulnerabilities To Attack Windwos Servers

The attackers exploited the EternalBlue vulnerability to gain initial access to the observatory farm,...

Likho Hackers Using MeshCentral For Remotely Managing Victim Systems

The Awaken Likho APT group launched a new campaign in June of 2024 with...

Hackers Gained Unauthorized Network Access to Casio Networks

Casio Computer Co., Ltd. has confirmed that a third party illegally accessed its network...