Security Market Segment LS
Wednesday, 07 October 2020 07:01

Attackers use complicated method to try and steal cryptocurrency Featured

By
Attackers use complicated method to try and steal cryptocurrency Image by WorldSpectrum from Pixabay

Malicious attackers have tried to get Israeli executives working for 20 digital currency firms to pay cryptocurrency by sending them messages after hacking their phones and stealing their identities.

The Israeli newspaper Haaretz reported that the failed attack took place at the beginning of September and that all the companies involved were using Partner Communications, a major Israeli telecommunications company.

The incident was investigated by Mossad and the country's National Cyber Security Authority.

It quoted Tzahi Ganot, the co-founder of Pandora, a security firm which provides protection for workers in sensitive positions, as saying that the attackers appeared to have used the cellular networks of a foreign country to gain access to the executives' details.

Ganot said the attack was likely to have been an SMSC (short message service centre) spoofing attack; this uses the roaming function and the attackers need access to a cellular network that interacts with Israeli networks.

“It’s a rare assault. The hackers send a message from a foreign cell network to an Israeli one, updating the client’s location. For example: ‘The client has just landed in Tbilisi, he has registered with our network. Please route his SMS messages via this network'," Ganot explained.

"This is a necessary procedure for people entering a foreign country, whose cell phones are in ‘roaming’ mode.”

He explained that the attackers were likely to be from another country, and they had managed to hack into the cellular network of another country, and in this case that was likely the origin of the attack in Israel, if not additional ones in other countries..

Ganot's company was brought into the picture on 7 September by one of the executives, who contacted him after his phone was hacked and his Telegram account compromised.

The attackers had sent messages to his Telegram contacts, asking them to send cryptocurrency.

After Ganot posted news about this to his clients and also some digital currency groups, he received a flood of messages, all complaining of similar hacks.

Ganot, who formerly worked for the NSO Group, a firm that makes surveillance software, told Haaretz that the identity theft had been carried out by using SMS verification.

He said he had contacted Partner about the incident and claimed the telco had mishandled it from the start.

“Partner replied to our queries with ‘what does it have to do with us?’ ‘We don’t have a data security team,’ and ‘we have sales or customer service'," he said.

"One representative even suggested I join their anti-virus service for five shekels (A$2.06) a month."

He said he had then contacted Partner’s data security director Yaniv Sabag. “He asked for the victims’ details and phone numbers but afterward he asked that each one of them approach customer services separately and open a call, otherwise he wouldn’t be able to look into their cases," Ganot said.

"I can tell you that to this moment I haven’t been able to ‘open a call’ in Partner and I’m a business client of theirs - or, more accurately, I used to be one.

“Finally, Sabag said they were checking out the incident – but a few days later they cut off all communication, not only with us, but also with their hacked clients, and didn’t answer their queries.”

A Partner spokesperson told Haaretz: “There is no connection between this incident and Partner. Incidents like these can take place — especially during the coronavirus — to clients of other firms as well.”


Subscribe to ITWIRE UPDATE Newsletter here

Now’s the Time for 400G Migration

The optical fibre community is anxiously awaiting the benefits that 400G capacity per wavelength will bring to existing and future fibre optic networks.

Nearly every business wants to leverage the latest in digital offerings to remain competitive in their respective markets and to provide support for fast and ever-increasing demands for data capacity. 400G is the answer.

Initial challenges are associated with supporting such project and upgrades to fulfil the promise of higher-capacity transport.

The foundation of optical networking infrastructure includes coherent optical transceivers and digital signal processing (DSP), mux/demux, ROADM, and optical amplifiers, all of which must be able to support 400G capacity.

With today’s proprietary power-hungry and high cost transceivers and DSP, how is migration to 400G networks going to be a viable option?

PacketLight's next-generation standardised solutions may be the answer. Click below to read the full article.

CLICK HERE!

WEBINAR PROMOTION ON ITWIRE: It's all about webinars

These days our customers Advertising & Marketing campaigns are mainly focussed on webinars.

If you wish to promote a Webinar we recommend at least a 2 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://www.itwire.com/itwire-update.html and Promotional News & Editorial.

This coupled with the new capabilities 5G brings opens up huge opportunities for both network operators and enterprise organisations.

We have a Webinar Business Booster Pack and other supportive programs.

We look forward to discussing your campaign goals with you.

MORE INFO HERE!

BACK TO HOME PAGE
Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

Share News tips for the iTWire Journalists? Your tip will be anonymous

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments