SIM swapping

A screenshot of two photos of Buchanan that appeared in a Daily Mail story dated May 3, 2025.

‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty

| | A Little Sunshine, Ahmed Hossam Eldin Elbadawy, Data breaches, Evans Onyeaka Osiebo, Joel Martin Evans, Ne'er-Do-Well News, Noah Michael Urban, Owen Flowers, scattered spider, SIM swapping, Thalha Jubair, Tyler Robert Buchanan, Tylerb
A 24-year-old British national and senior member of the cybercrime group "Scattered Spider" has pleaded guilty to wire fraud conspiracy and aggravated identity theft. Tyler Robert Buchanan admitted his role in a ...
Krebs on Security
How AI Threats Have Broken Strong Authentication 

How AI Threats Have Broken Strong Authentication 

| | adversary-in-the-middle, AI Driven Attacks, anti-spoofing, authentication vulnerabilities, behavioral signals, biometrics, cryptographic authentication, deepfakes, device-bound credentials, enrollment fraud, high-assurance authentication, identity security, Identity Verification, MFA, Multi-Factor Authentication, NIST AAL2, NIST AAL3, PAD, phishing-resistant authentication, presentation attack detection, secure hardware, secure onboarding, SIM swapping, zero-trust identity
A look at why identity security is failing in the age of deepfakes and AI-driven attacks, and how biometrics, MFA, PAD, and high-assurance verification must evolve to deliver true, phishing-resistant authentication ...
Security Boulevard
A spider from above

20-year-old Scattered Spider Member Sentenced to 10 Years in Prison

| | Phishing, prison sentence, scattered spider, ShinyHunters, SIM swapping
Noah Michael Urban, a 20-year-old Florida man, was sentenced for his role as a member of the notorious Scattered Spider threat group in a series of phishing and other scams between 2022 ...
Security Boulevard
Authy Breach Impact & RockYou 2024 Password Leak

Authy Breach: What It Means for You, RockYou 2024 Password Leak

| | 2fa, Authy, Cyber Security, Cybersecurity, Data breach, Data Privacy, Digital Privacy, Episodes, Information Security, Infosec, MFA, Multi-Factor Authentication, Password, password leak, password list, passwords, Phishing, Podcast, Podcasts, Privacy, RockYou, RockYou2024, security, SIM swapping, social engineering, technology, two factor authentication, Weekly Edition
In episode 338, we discuss the recent breach of the two-factor authentication provider Authy and its implications for users. We also explore a massive password list leak titled ‘Rock You 2024’ that ...
Shared Security Podcast
Screenshot of bribery SMS spam

SIM Swappers Try Bribing T-Mobile and Verizon Staff $300

| | 2fa, 2FA bypass, 2FA Flaws, 2FA policies, 2FA/MFA, bypass 2FA, Industry Insider, Insider, Insider attack, Insider Attacks, insider breach, Insider Fraud, insider risk, malicious social engineering, MFA, MFA hacks, , MFA Methods, Multi-Factor Authentication, Multi-Factor Authentication (MFA), Multifactor Authentication, SB Blogwatch, SIM swap, sim swap fraud, SIM swap scams, SIM swapping, sms scam, SMS scams, SMS Spam, SMS Spamming, social engineeering, T-Mobile, t-mobile breach, t-mobile data breach, T-Mobile hack, two factor authentication, two-factor-authentication.2fa, verizon, verizon data breach, Verizon Wireless
Not OK: SMS 2FA — Widespread spam targets carrier employees, as scrotes try harder to evade two-factor authentication ...
Security Boulevard
app, sideloading, MDM, Apple, IoS, SEC SIM swap X account

SEC’s X Breach Highlights Need for Better Defense Against SIM Swap Attacks

| | cyberattack, Mobile Security, Network Security, SEC, SIM swapping
The ease with which fraudsters applied the SIM swap attack on the SEC indicates the issue should be a top concern for all organizations ...
Security Boulevard
A blown out picture of FCC chairwoman Jessica Rosenworcel

FCC’s Got New Rules for SIM-Swap and Port-Out Fraud

| | 2 factor, 2 factor auth, 2-factor authentication, 2FA apps, 2FA bypass, 2FA Flaws, 2FA phishing, 2FA policies, 2FA/MFA, Cloud MFA, DUAL FACTOR AUTHENTICATION, fcc, FCC Failures, FCC Follies, hacking two factor, Jessica Rosenworcel, MFA, MFA hacks, mfasecurity, Multi-Factor Authentication (MFA), number port-out fraud, number port-out scams, Number Portability Administration Center, port-out scams, SB Blogwatch, SIM swap, sim swap fraud, SIM swap scams, SIM swapping, SMS, SMS messages, SMS phishing, sms scam, SMS scams, smshing, two-factor-authentication.2fa
Too many times: Federal Communications Commission shuts stable door after horse bolted. But chairwoman Jessica Rosenworcel (pictured) was hoping it would save us ...
Security Boulevard
cambodia, laundering, scams, vishing, romance scams generative AI pig butchering

Attack on Kroll Puts a Spotlight on SIM Swapping

| | Cybersecurity, Mobile carriers, Phishing, SIM swapping, T-Mobile
Three cryptocurrency firms undergoing bankruptcy restructuring sustained data breaches after an employee at risk advisory firm Kroll recently fell victim to a SIM swapping scam, an attack technique that doesn’t get the ...
Security Boulevard
Kroll Employee SIM-Swapped for Crypto Investor Data

Kroll Employee SIM-Swapped for Crypto Investor Data

| | A Little Sunshine, BlockFi, Data breaches, FTX, Kroll breach, Latest Warnings, SIM swapping, T-Mobile
Security consulting giant Kroll disclosed today that a SIM-swapping attack against one of its employees led to the theft of user information for multiple cryptocurrency platforms that are relying on Kroll services ...
Krebs on Security
DHS secretary Alejandro Mayorkas

Teenage Hackers Must be Stopped: US DHS’s CSRB Report

| | 2 factor auth, 2-factor authentication, 2fa, 2FA bypass, 2FA Flaws, 2FA phishing, 2FA policies, 2FA/MFA, cellphone fraud, CSRB, Cyber Safety Review Board, Department of Homeland Security, DHS, DUAL FACTOR AUTHENTICATION, factor auth, homeland security, Homeland Security Presidential Directive, homelandsecurity, Lapsus$, Multi-Factor Authentication, Multi-Factor Authentication (MFA), Multifactor Authentication, SB Blogwatch, SIM swap, sim swap fraud, SIM swap scams, SIM swapping, two factor authentication, U.S. Department of Homeland Security, United States Department of Homeland Security, US Homeland Security
2FA SMS FAIL: Lapsus$ social engineers exploited weak two-factor authentication. Something must be done! (Well, this is something.) ...
Security Boulevard
Load more