Kroll, which provides risk and financial advisory solutions, said on Friday that one of its employees had fallen victim to a “very sophisticated” SIM-swapping attack.
According to the company, the incident occurred on August 19, 2023 and targeted an employee’s T-Mobile account.
“Specifically, T-Mobile forwarded its employee’s phone number to the threat actor’s phone upon request without any authorization or communication from Kroll or its employees,” it said. Said on recommendation.
This gave the unidentified attacker access to certain files containing personal information of bankruptcy creditors. block phi, FTXand Genesis.
![cyber security](https://thehackernews.com/new-images/img/b/R29vZ2xl/AVvXsEiltwxN6CgTsOwvK4Kb9RC48ffApMCcXD3j2Gc3db9P1-x8PHByrz3vE32zvTg2ob2gKgFCjZBxfrCvkNyecbAPGYBfbb0Tj5AljTS_uYaanG6sEjZCK8NhoD2rHwk-Eh24yrpazpnZZiKsiHdbNkq2XVUeD-T-sZ2yW29dfOwyrVq3f31mu0hw25FnVzTn/s728-e3650/3.png)
SIM swapping, also known as SIM splitting or simjacking, is a generally harmless process, but it can be abused by attackers to fraudulently activate SIM cards under their control using the victim’s phone number. This allows them to intercept SMS messages and voice calls, as well as receive her MFA-related messages that control access to her online accounts.
Scammers frequently use phishing and social media to collect personal information about their targets, such as birthday, mother’s maiden name, high school attended, etc., to convince mobile operators to port victims’ phone numbers. to achieve this. One of her own SIM cards.
The company said it took immediate steps to secure the three affected accounts and notified affected individuals by email. An investigation is ongoing, Kroll said, but found no evidence that other systems or accounts were affected.
![cyber security](https://thehackernews.com/new-images/img/b/R29vZ2xl/AVvXsEgNmNiBV8c8Rp0Xy6N9lCX9JL2cBlrjkSeuW4JhgOVQ3mKTsYV4pPvh3nDz32D97D8XcWQ53EJ1p4n2VX0gZH_YrBZBqElUMfzFWgb50P8lv1iac_1f-p5liZzC1ISVWJygv2s1Qm36rOHwk_kPXUNNT3nbSDr144QYZ6XGq0aXRDOrFfSlUnHnc0x4Fe_F/s728-e3650/cis-d.gif)
The disclosure comes just days after Blockchain Capital co-founder Bart Stevens said: filed a lawsuit To an anonymous hacker who stole $6.3 million worth of cryptocurrency in an alleged SIM swap attack.
Earlier this month, the U.S. Department of Homeland Security’s Cyber Security Review Board (CSRB) announced stronger measures to prevent SIM swaps, including giving customers the option to lock their accounts and undergo strict identity checks. Asked telecommunications providers to adopt security protocols.
Rather, the frequency of SIM swapping attacks is a reminder for users to move away from SMS-based two-factor authentication (2FA) and switch to phishing-resistant methods to protect their online accounts.