Threat actors appear to be using stolen employee records from telephone companies to entice workers to perform illegal SIM swaps in return for quick cash.In a Reddit thread, current and former employees of T-Mobile and Verizon reported receiving text messages from unknown senders soliciting interest in the scam.One of the texts, a screenshot of which was posted in the thread, reads: “I got your number from the T-Mo employee directory. I’m looking to pay someone up to $300 per sim swap done, if you’re interested, reply and we can talk.”Another example message invited the recipient to reply to the offer via Telegram. The texts were sent from a variety of numbers with a range of area codes.“Myself and a group of former employees all got the same message, all from different numbers and with different verbiage,” one participant in the Reddit thread said.“My entire store got this this morning,” another person said.SIM swapping, also referred to as simjacking, is a technique cybercriminals use to breach accounts secured by multi-factor authentication (MFA). If a wireless carrier ports the victim’s details from their legitimate SIM to one controlled by a threat actor, the actor will receive messages intended for the victim, allowing them to take control of their account.Although cyber gangs often use social engineering to dupe carrier help desk staff into performing the swaps, paying an insider to do the work can be much more efficient.
Application security, Endpoint/Device Security, Threat Intelligence

Scammers offer cash to phone carrier staff to swap SIM cards

(Adobe Stock)

Related Events
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds



