International Police Crackdown Takes Down SIM-Swapping Gang

Post Views: 9

A coordinated multinational operation led by Poland’s Central Bureau for Combating Cybercrime (CBZC) resulted in the arrest of four individuals linked to an organized cybercriminal network specializing in SIM swap attacks, cryptocurrency theft, and financial fraud.

Operation Overview

The operation involved collaboration with U.S. federal agencies, including the Federal Bureau of Investigation (FBI) and Homeland Security Investigations (HSI). The case is being managed by the Regional Prosecutor’s Office in Kraków, with the investigation ongoing.

Investigation Details

According to CBZC officials, the group operated through structured organizational methods to infiltrate IT systems. Utilizing custom tools and social engineering tactics, the perpetrators accessed telecommunications operators’ infrastructure and employee credentials. This breach enabled them to seize control of victim phone numbers, facilitating unauthorized access to SMS-based authentication systems.

The stolen data allowed the suspects to compromise cryptocurrency exchange accounts, transferring digital assets into their possession.

The investigation revealed that the group systematically exploited these vulnerabilities to generate revenue. They utilized multiple bank accounts across Poland and other jurisdictions, along with international payment services and multi-currency digital wallets, to launder proceeds. Authorities estimate the total value of illicitly obtained funds exceeds tens of millions of zlotys.

Legal Consequences

Prosecutors have filed charges against the suspects for involvement in an organized crime syndicate, unauthorized computer system intrusion, and financial laundering. If found guilty, they could face prison terms of up to 25 years. A judicial order has placed all four individuals in pretrial detention.

Implications for Cybersecurity

CBZC emphasized that the cross-border nature of the operation restricts the disclosure of specific details at this stage. The case highlights the growing threat of coordinated cybercriminal activities targeting digital financial systems and telecommunications networks. The group’s methods align with known techniques used in cryptocurrency-related cybercrime, including the exploitation of weak authentication protocols and the use of compromised user credentials.

Law enforcement agencies continue to monitor similar threats, urging organizations to strengthen security measures for critical infrastructure and user accounts.