Better Call Saul also suffered a SIM card attack, fake celebrity coins were used to defraud hundreds of thousands of dol
Original author: ZachXBT, Ch人工智慧n Detective
Original translation: Ismay, BlockBeats
Editor’s note: Recently, the convicted British hacker Gurv (Gurvinder Bhangu) has again attracted attention. He was accused of being involved in the theft of social media accounts of famous actors Sydney Sweeney and Bob Odenkirk. By creating the Solana meme coin scam, these attacks caused a total loss of more than $530,000.
相關閱讀: Friend.tech users suffered SIM Swap attacks, is Verizons SMS verification a security vulnerability?
The scam used by Gurv was a SIM card swap attack. Last year, crypto user @darengb also claimed that his SIM card was swapped by hackers, resulting in the theft of 22 ETH from his friend.tech account. Some people criticized the insufficient security measures of mobile operators, while others pointed out that phone numbers have inherent security vulnerabilities as a means of authentication. Verizons related security features and the industrys security measures have also become the focus of discussion. Similar SIM card swap attacks have even happened to Ethereum co-founder Vitalik.
The following is the original content:
An investigation into convicted UK hacker Gurv (Gurvinder Bhangu) and his connection to the recent hacks of Sydney Sweeney and Bob Odenkirk’s social media accounts revealed that a total of over $530,000 was stolen through the creation of the Solana meme coin scam.
On July 2, Sydney Sweeney’s account was attacked by a SIM Swap attack, and a meme coin link was subsequently posted on his account, causing the pr冰 of the coin to rise sharply and then plummet.
The team wallets from the SWEENEY scam sold a total of over $515,000 in assets.
Main team wallet address:
AgySZeAtqM3iSbvMPxv2g94oTd3segx4WdKuFD7M5CEr
jQEaiiAkRGhFoCDnjxn6mmtrksC4EckF38fxkaNMs1j
After cashing out, the hacker began trolling on social media, where they tried to pin the blame for recent events on the likes of Hulk Hogan and 50 Cent, with little evidence to suggest they were responsible for those events as well.
Through time analysis, we can see that the proceeds from the scam were first transferred to an exchange on Solana and then converted into Bitcoin and Ethereum.
Destination address:
0x0350730e4907cd69d1f3cf89f42a58091e397b11
bc1qs2lg3m278cuem2kz6shx6vn9xxzvf8lrd67dp5
bc1qvpjvdjvl98z2uz5dxhv3s32f3eenvjwzdtmlf8
These funds are dispersed on-chain, so we can infer that multiple people were involved.
After the incident, screenshots of Gurv receiving codes to log into Sydney Sweeneys account on Telegram appeared online. These codes were obtained through SIM card swapping. In addition, a receipt from Verizon was attached, showing Sydney Sweeneys SIM card swap records.
Gurv, a convicted hacker who served a prison sentence in the United Kingdom for breaking into Instagram accounts and extorting users, told law enforcement at the time: “This wasn’t even a crime.”
Further confirmation showed that Gurv was indeed the man in the screenshots. In multiple Telegram groups, he responded to messages using the same Telegram user ID and talked about his experience in prison.
By correlating Ethereum addresses from the Sydney Sweeney SIM swap, we found that 1.5 ETH was sent to an exchange and received on Solana on July 9. Based on this information, we can find another attack by Gurv or his partners.
Source transaction:
0xec0c75bc72bec3804c056e56da52ce8b1e43e2f9e326debaf979a6c61cfab41f
Target transaction:
i1kC4YgDTwfg7zvt5krxbarxdDeVSbk3t7o3jYEDMyBiWhWFEFVjMbD8qtMUQYnvzP1ybJ7ZA4SqZFivAfcUhoK
On July 9, Bob Odenkirk’s (Breaking Bad and Better Call Saul actor) social media account was hacked and released a link to a meme coin, just like in the case of Sydney Sweeney. However, this time they screwed up and released two coins (KIRK and SAUL), so the profit amount was small.
The proceeds were sent to the same Ethereum address that also funded the Solana address.
Hopefully, UK law enforcement will act quickly and use the wealth of evidence available to hunt Gurv down again. Some of the funds have been transferred to cryptocurrency casinos and used to purchase gift cards.
Currently, funds held in wallets associated with these hacks amount to approximately $488,000.
Funding location:
0x461f8929fc2b039f2917b7556894f21a51b4138a
bc1qs2lg3m278cuem2kz6shx6vn9xxzvf8lrd67dp5
bc1qvpjvdjvl98z2uz5dxhv3s32f3eenvjwzdtmlf8
0x2655770dc11073d8ce90725655862a13c73999fd
0x71d06fa03134fe5fd4b235f448e490e521f00845
This article is sourced from the internet: Better Call Saul also suffered a SIM card attack, fake celebrity coins were used to defraud hundreds of thousands of dollars
Next weeks highlights io.net: Daily block rewards for IO Workers will start on June 25th . Blast: The airdrop will start on June 26 ; Blur Season 3 will follow the Blast airdrop on June 26 ; Optimism will launch OP Governance Season 6 on June 27 ; Next Friday, this quarters options will be settled: BTC options with a total of 6.65 billion positions will expire, and ETH options with a total of 3.56 billion positions will expire ; LayerZero CEO: The final list of witches will be announced next week at the latest . From June 24 to June 30, more noteworthy events in the industry are previewed below. June 24 Upbit plans to maintain the staking service system on June 24, which is expected to last for…