Cybersafetyconnections September 11,2023 vol#134 

  • From Konbriefing this week, we focus on sim cyberattack on Kroll a U.S. consulting company affected by ‘SIM swapping’ cyber-attack in New York City, New York, USA. 
  • It affected an employee and information on bankruptcy in regard to Block Fi, FTX and Genesis. 
  • Apparently, this happened without Kroll or the employee authorization. 
  • Kroll took steps to mitigate the loss from cyberattack. 

What happened? 

Theft Images 

According to Kroll there was a sim swap cyber-attack on a T-Mobile account belonging to one of its employees. The threat actor called and requested that the affected employees phone number be transferred to the threat actor’s phone number without T-Mobile or the employee’s authorization. 

Who was affected? 

Consulting Services 

It seems that the threat actor then got access to certain files that had personal information for the bankruptcy issues for Block Fi, FTX and Genesis. 

Why did this happen? 

Sim Swapping 

Apparently, T-Mobile acted without Kroll or the employee’s authorization. 

What steps have been taken to mitigate the loss? 

Diseaster Management 

Kroll took immediate steps following the incident; 

  • Acted instantly to secure the account and let the affected individuals know what had happened. 
  • Kroll is cooperating with the FBI in the investigation and is not aware that any other systems or accounts were impacted. 

Kroll also stated that it would never require the following actions with regards to the bankruptcy claims or asset distribution; 

  • Ask that you link a cryptocurrency wallet to a website or application.  
  • Provide your seed phrase or private keys to anyone.  
  • Ask you to download any software or use any wallet application that you are unsure of.  
  • Warned against giving away your password over email, text message, or phone call. 
  •  Lastly, that you never provide personal identifying information, such as your birthday or social security number, over email, social media, or any other means, except as described in a Court-approved process posted to Kroll Restructuring Administration’s case website or the Court’s docket.  
  • Kroll prioritizes data security and information security to ensure the safety of its users. 

Subscribe to get the latest post.