A single scammer has reportedly managed to steal round $385,000 price of Ether (ETH) in lower than 24 hours, amid a scourge of SIM-swap hacks seemingly focusing on buddy.tech customers.
On Oct. 5, blockchain sleuth ZachXBT reported the identical scammer had pilfered 234 ETH over the previous 24 hours by SIM-swapping 4 completely different buddy.tech customers.
The on-chain motion of crypto property all traced again to the identical hacker who drained the accounts of the 4 victims.
The identical scammer profited $385K (234 ETH) up to now 24 hours off SIM swapping 4 completely different FriendTech customers. pic.twitter.com/03BoBEqGax
— ZachXBT (@zachxbt) October 4, 2023
One of many reported victims of the latest chain of SIM-swap assaults posted to X (Twitter) following the assault:
“Acquired sim swapped. Apparently, dude was in a position to do it from an Apple retailer and switched it to an iPhone SE. Do not buy my keys, that pockets is compromised.”
X consumer “KingMgugga” reported an assault focusing on them taking place in actual time, posting to X that they have been “getting fucking sim swapped watching it occur” and asking for assist. In the meantime one other X consumer “holycryptoroni” confirmed they have been equally attacked, lamenting “I acquired swapped sorry.”
Earlier this week, an extra 4 buddy.tech customers claimed to have their accounts drained because of a SIM-swap or phishing assault, totaling to round 109 ETH stolen.
I used to be simply SIM swapped and robbed of twenty-two ETH through @friendtech
The 34 of my very own keys that I owned have been bought, rugging anybody who held my key, all the opposite keys I owned have been bought, and the remainder of the ETH in my pockets was drained.
In case your Twitter account is doxxed to your actual… pic.twitter.com/5wA86mjYEG
— daren (buddy, buddy) (@darengb) October 3, 2023
Pal.tech permits customers to buy “keys” of people which grants entry to non-public chat rooms with them.
The SIM-swap rip-off happens when scammers achieve entry to the sufferer’s telephone quantity and use it to amass authentication which permits them to entry their social media and crypto accounts.
Manifold Buying and selling, a agency constructing instruments for the ecosystem, estimated that $20 million of buddy.tech’s $50 million complete worth locked may very well be in danger. It referred to as for the platform to beef up its account safety measures by enabling two-factor authentication (2FA).
There have additionally been requires X to implement 2FA safety measures to forestall the leaking of cell phone numbers following the high-profile hack of Vitalik Buterin’s account in September which was additionally as a result of a SIM swap assault.
Founder and CEO of pockets safety agency Delegate “0xfoobar” suggested eradicating telephone numbers from social media accounts.
crypto twitter is sort of a neighborhood the place as soon as a day any individual leaves their entrance door open, will get robbed, and all people comes collectively to lament the loss, leaving their very own entrance doorways open. as a substitute of retweeting the seventy fifth simswap of the week go take away your telephone from the whole lot
— foobar (@0xfoobar) October 5, 2023