Californian Charged Over Crypto Extortion and 28 SIM-Swap Attacks

Published at: June 11, 2020

Californian Richard Yuan Li, 20, has been charged with conspiracy to commit wire fraud for his role in SIM-swap attacks targeting at least 20 individuals, as well as the attempted extortion of a New Orleans-based doctor and cryptocurrency investor known only as ‘Investor A.’

Li is believed to have collaborated with others from January 2018 until February 2019 to defraud numerous victims through SIM-swapping attacks, with some of the co-conspirators remaining unknown to the United States Attorney’s Office.

SIM-swaps involve rerouting a victim’s SIM to a phone in possession of the attackers, allowing them to gain access to personal information and sensitive accounts including emails, bank accounts, and cryptocurrency wallets.

20-year-old charged over SIM-swap attacks

The complaint asserts that Li first participated in a scheme to defraud Apple Inc. in January 2018. After convincing Apple customer support staff that they had not received an iPhone 8 purchased from the company, Lie and his co-conspirators were able to gain possession of a second device.

On November 10, Victim A’s phone number was swapped to a SIM card contained in the fraudulently obtained iPhone 8 — which Li operated from his dormitory in San Diego.

Attackers demand 100 Bitcoins

Li and his co-conspirators were able to gain control over Victim A’s email, before accessing several of the physician's accounts with various cryptocurrency exchanges.

After stealing “a significant portion of Victim A’s cryptocurrency,” the group rang the physician to demand a ransom of 100 Bitcoins (BTC) to prevent sensitive information from being leaked and purportedly restore control over his crypto accounts.

Between October 2018 and December 2018, Li participated in 28 SIM-swapping attacks that targeted at least 19 other victims.

If convicted, Li faces up to five years imprisonment and a fine of up to $250,000.

15-year-old steals $23.8 million via SIM-swap

During May, pioneering crypto investor and the victim of a $23.8 million SIM-swap attack in 2018, Michael Terpin, filed a civil suit for $71.4 in damages against 18-year-old Ellis Pinsky of Irvington, New York for masterminding the hack.

Pinsky had been just 15 years old at the time of the attack, and had planned to retire early after the heist.

Tags
Related Posts
Decentralized Apps May Solve SIM Swapping Woes
In the US alone, over $55m has been stolen through SIM swapping attacks since 2018. NEM, a blockchain-based ecosystem, believes that decentralized apps could provide a meaningful solution to this problem. According to NEM, they’re working with a solution called “FIX Network”, which was established to help mobile subscribers secure private keys and transactions on SIM cards. The network leverages a blockchain-based protocol to support the security and privacy of mobile subscribers, NEM explains: “This unique architecture will allow mobile operators to deliver services such as digital identity management, cryptocurrency wallets, and personal data firewalls, all enabled by the safekeeping …
Technology / July 31, 2020
Report: Cryptojacking Campaigns Up by 29%, Ransomware Attacks Up 118%
Cybersecurity company McAfee Labs has released its August 2019 threat report, which notes an increase in cryptojacking campaigns and ransomware attacks in Q1 2019. Cryptojacking on the rise McAfee Labs posted their report on the company’s website on Aug. 28. According to the report, crypto jacking — installing and running a cryptocurrency miner without user permission — has been on the rise, with a 29% increase in crypto jacking campaigns in Q1 2019. Additionally, the company discovered new malware families for both Microsoft Windows and Apple users. One crypto jacking campaign they discovered was PsMiner — a crypto jacker for …
Blockchain / Aug. 30, 2019
Bitfinex hackers move another $30M in stolen Bitcoin from 2016
Bitcoins (BTC) stolen from major cryptocurrency exchange Bitfinex back in 2016 are on the move again, as hackers shift another massive batch of funds to unknown wallets. According to data from crypto transaction tracking service Whale Alert, Bitfinex hackers moved more than $4.6 million in stolen BTC on Oct. 8. These funds were sent to unknown wallets in two separate transactions of 435 BTC and 8 BTC. But the hackers have moved far more than this amount earlier this week. According to Whale Alert, Bitfinex hackers completed seven more similar transactions on Oct. 7, totaling at 2,900 Bitcoin, or $26.4 …
Bitcoin / Oct. 8, 2020
Ransomware Gangs Are Teaming Up to Form Cartel-Style Structures
Recent ransomware attacks from well-known cybercriminal groups have been suggesting that gangs are forging cartel-style alliances to pressure their respective victims to pay the ransom requests. Cointelegraph has obtained access to what seems to be a darknet site that belongs to the Maze group. On the site, Maze has been leaking stolen data beginning sometime after Sunday. The central feature to highlight is that the gang notes that Ragnar Locker, another ransomware group, provided the info, as the title of the blog post says: “MAZE CARTEL Provided by Ragnar.” Some of the victims listed are United States-based companies. Speaking with …
Bitcoin / June 9, 2020
California Cybercrime Police Focus on Cryptocurrency SIM Swapping as ‘Highest Priority’
U.S. law enforcement consider so-called “SIM swapping” one of its “highest priorities” in a bid to fight cryptocurrency fraud, security news and investigation blog KrebsonSecurity reported Nov. 7. Speaking to the publication, Samy Tarazi, a police sergeant in Santa Barbara and a supervisor of the REACT Task Force — a group dedicated to fighting cybercrime — said the number of instances of the crime had increased dramatically. “For the amounts being stolen and the number of people being successful at taking it, the numbers are probably historic,” he said. SIM swapping refers to the act of remotely hijacking the SIM …
Bitcoin / Nov. 7, 2018