20.5k unique visitors in the last 3 days

Hackers Fool Telco Staff into Installing Remote Desktop Software, Claims Magazine

Persuading the unwary to allow remote access to their computers is an old trick, but it supposedly is used to execute SIM swaps.

Hackers are now getting telecom employees to run software that lets the hackers directly reach into the internal systems of U.S. telecom companies to take over customer cell phone numbers

This is the alarming claim made by Joseph Cox, writing for Vice.

Multiple sources in and familiar with the SIM swapping community as well as screenshots shared with Motherboard suggest at least AT&T, T-Mobile, and Sprint have been impacted.

We are all familiar with the concept of customers being tricked by hackers into installing Remote Desktop Protocol (RDP) software on their computers, effectively handing unlimited access and control to criminals. Cox writes that telco employees are also falling for the same trick at work. Hackers obtain access to the telco’s systems and then reportedly use them to take over the phone accounts of the telco’s customers.

Little information was presented by Cox, ostensibly because he was dealing with criminals and did not want others to copy their techniques, but also because he appears to be relying upon the word of a single self-described SIM swapper and an ‘independent security researcher’ who seemingly showed photos of computers running software used inside telcos. However, representatives of AT&T and Sprint gave credibility to the Cox’s claims by saying they were ‘aware’ of this method being used by hackers who seek to execute SIM swaps.

You can read the Vice article here.

Eric Priezkalns
Eric Priezkalnshttp://revenueprotect.com

During his career, Eric has been a Director of Risk Management for a national telco, the Chief Executive of the Risk & Assurance Group, a Chief Marketing Officer for a software business, a consultant, a public speaker and the publisher of Commsrisk since its launch in 2006. Look here for more about the history of Commsrisk and the role played by Eric.

The comms providers that Eric has worked for include Qatar Telecom, Cable & Wireless, T‑Mobile, Sky and Worldcom. In addition to his proficiency at speaking about the current scamdemic, Eric is also a qualified chartered accountant and a subject matter expert in consumer protection, enterprise risk management, fraud prevention, data integrity and billing accuracy. Eric was the lead author of Revenue Assurance: Expert Opinions for Communications Providers, published by CRC Press. He can be reached through the contact form on this website.

Related Articles

The Commsrisk Global Fraud Dashboard


Our Global Fraud Dashboard uses AI-powered search to collate, update and visualize data about scams and other network abuses from around the world. New charts are added each month. See it here.

Get Our Weekly Newsletter by Email