Eskenzi PR Eskenzi PR
  • About Us
Sunday, 7 March, 2021
IT Security Guru
Eskenzi PR
  • Home
  • Features
  • Insight
  • Events
    • Women in Cyber 2020
    • Women in Cyber 2020 [SPONSORS]
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Women in Cyber 2020
    • Women in Cyber 2020 [SPONSORS]
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Phishing service provider ‘SMS Bandit’ arrested in the UK 

A 20-year-old man from Birmingham has been charged with the Smishing-As-A-Service operation

by Sabina
February 5, 2021
in Opinions & Analysis
India Bans 59 Chinese Mobile Apps Over ‘Security’
Share on FacebookShare on Twitter

The UK’s Metropolitan Police force has arrested a 20-year-old man from Birmingham for allegedly operating an online service that provided SMS phishing (or smishing) campaigns. Known in the cyber underworld as “SMS Bandit”, the phishing service would involve cybercriminals distributing fake SMS messages in high volumes to unsuspecting victims, pretending to be from reputable brand names including PayPal, telecommunication providers, COVID-19 pandemic services.

Once the scammers gained access to account credentials, these would then be sold across the dark web marketplaces they operated. Having been first reported by Krebs on Security, there are several users associated with this particular phishing service, posting promotional messages on various cybercrime forums under the following alias’: “SMSBandits,” “Gmuni,” “Bamit9,” and “Uncle Minus.”

The UK’s National Crime Agency (NCA) has not released the name of the alleged hacker, but the Metropolitan Police Service’s cybercrime unit has confirmed when they arrested the man, he was also linked to a business that supplied illegal services related to other phishing offenses.

Cybersecurity experts have provided their insights regarding the news:

Burak Agca, security engineer at Lookout: 

“The details of this phishing campaign reinforce the fact that threat actors focus on key national and international event when they occur to drive engagement and maximise returns. This particular incident shows how attacker tactics are evolving as the attacker vetted the target ahead of time to ensure detection mechanisms in place by the carriers and SMS gateway providers could be avoided. This type of agile attack amplifies the need for 3rd party mobile threat defence that goes beyond the native carrier and device protections. 

This incident should ring alarm bells for IT and security leaders and this phishing campaign shows that many teams are still lagging behind on securing employee mobile devices, which is ever more important with remote working globally. There needs to be a way to audit whether users inadvertently clicked on malicious links within SMS messages, social media apps, personal emails, and any other third-party app with a chat function.” 

Javvad Malik, security awareness advocate at KnowBe4: 

“SMS phishing, or Smishing has been gaining popularity as a phishing channel to target unsuspecting victims. With the right software, it can be almost as easy to send mass smishing messages as it can to send email phishes.  

People receiving links via SMS are often less suspicious when compared to links in emails, and have fewer tools available on their phone to easily validate the authenticity of a message. Therefore, it’s vital that people are made aware of these scams and remain vigilant about them.  

It’s great to hear the suspect behind SMS Bandits has been apprehended, but Smishing is here to stay, and will only increase in frequency and sophistication over time.”  

 

4 1 vote
Article Rating
FacebookTweetLinkedIn
ShareTweetShare
Previous Post

Self-Sovereign Identity Solutions Provider Northern Block Selects Acuant for Identity Verification and Compliance

Next Post

Post-Pandemic Healthcare: the greatest challenges facing cyber professionals

Subscribe
Notify of
guest
guest
0 Comments
Inline Feedbacks
View all comments

Recent News

Malaysia Airlines

Malaysia and Singapore Airlines Breached in Third Party Hacks

March 5, 2021
Fraud attempts skyrocketed in 2020 according to latest Financial Crime Report from Feedzai

Fraud attempts skyrocketed in 2020 according to latest Financial Crime Report from Feedzai

March 4, 2021

Top 10 awards to enter for cybersecurity 

March 3, 2021
Medal

Identity theft: US Congressional Medal of Honor

March 3, 2021

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Women in Cyber 2020
    • Women in Cyber 2020 [SPONSORS]
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

This site uses functional cookies and external scripts to improve your experience.

More information
wpDiscuz
0
0
Would love your thoughts, please comment.x
()
x
| Reply
Privacy Settings / PENDINGGDPR Compliance

Privacy Settings / PENDING

This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.

NOTE: These settings will only apply to the browser and device you are currently using.

GDPR Compliance

Accept