Identity Theft - A Very Personal Hacking Attack

Uploaded on 2020-08-19 in TECHNOLOGY-Key Areas-Social Media, GOVERNMENT-Law Enforcement, FREE TO VIEW

Recently, a US woman was hacked and her personal data held to ransom. She contacted us to tell her story and has kindly agreed that we can tell it to you here. It's a grave warning about the dangers of identity theft and how vulnerable we can be when digital communications platforms are so easily exploited by online criminals.  Everyone needs to be aware of these dangers. 

This is her experience of trying to get help from social media companies and the police. 

“My Apple ID and Facebook were hacked from within an app. The hacker is from the Ukraine. He targeted me for a high profile game which, according to Apple, is the source of the breach. He changed all of my information so I can't verify my account. All of my personal information is now in their hands to include Social Security, ID's, mortgage application, bank accounts, credit cards, Google saved passwords to 87 accounts, my emails, messages, photo's." 

“I was contacted today by another person claiming to be a police officer from the Ukraine. He said he bought an iPhone on the Internet with a Lords Mobile game on it and now the game disappeared. The game disappeared because I disputed charges and they locked it. He now wants me to pay him the $1000 he paid for to get my accounts back. The phone isn't mine. The apple ID on it is mine. Both the hacker and the buyer of the phone now have access to all of my data."

“I had searched the Ukraine police and clicked a link that said it was their cyber security team but no responses. I have also contacted both Apple and Facebook multiple times but can’t get a positive response. 

“Apple can’t help me because the hacker changed everything that verifies me as me within 1 hour on July 21. In that same hour he did the same to Facebook. And Facebook doesn’t respond to my multiple attempts to send my photo ID, reports of my stolen acct, and you can’t contact a real person."

“I contacted my local police but they laughed because the hacker is in Ukraine. Nothing they can do. Also called the FBI since its identity theft and my money was accessed. They can’t really help either. "

“The hacker changed 5 things for Apple. 1. To change my password. 2. To change my recovery email. 3. To add his phone number. 4 to remove my phone number and 5. To change my Apple ID to his email. The next day he removed my iPhone and erased all in my device. Apple sees all his info, but they can’t compromise his privacy!"

" I think people should know that the company that constantly touts themselves as the most secure operating system was the easiest and fastest for the hacker to get. He entered through an app on my phone, a game and on which I have a high profile player account and he sold it for $1000 along with some one’s stolen phone."

“He contacted me on my personal and work email trying to get me to pay the $1000 he paid to the hacker in return for my accounts. Is he really the hacker? Or are there really 2 different low life trying to rob me. My phone contains everything!  This is identity theft, theft of money, theft of a $10-12k digital game, fraud, theft of data, privacy and data breach, impersonation of a police officer since his email said he is a police officer of the Ukraine." 

"Maybe you can use this information, maybe you can’t. Either way, turn off your iCloud, your Google cloud, don’t back up your smart phone anywhere but an external hard drive." 

“Don’t upload documents to your phone, keep email and chats clear, keep your contacts somewhere safe, don’t pay bills or keep apps to them on your smart phone and don’t connect your credit cards or bank info to any smart phone or digital wallet. Don’t keep identification, emailed attachments like W2’s or mortgage info on a digital device or digital storage”.  

If you have any advice or suggestions for the victim of this crime please contact Cyber Security Intelligence.

You Might Also Read: 

Identity Management Fundamentals:   

 

« Cyber Crime Is Growing Very Fast Due To Coronavirus
Remote Working Has Real Cyber Security Risks »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

CIRCL

CIRCL

CIRCL is the national Computer Incident Response Center of Luxembourg

Verimuchme

Verimuchme

Verimuchme is a digital wallet and exchange platform to secure, verify and re-use personal information.

BeOne Development

BeOne Development

BeOne Development provide innovative training and learning solutions for information security and compliance.

MSG Systems

MSG Systems

MSG are committed to intelligent IT and industry solutions and offer independent consulting on all aspects of information security.

TeachPrivacy

TeachPrivacy

TeachPrivacy provides computer-based privacy and data security training that is engaging, memorable, and understandable.

DataProtect

DataProtect

DataProtect is a specialized information security company providing consultancy, information management, integration and training services.

Montimage

Montimage

Montimage develops tools for testing and monitoring networks, applications and services; in particular, for the verification of functional, performance (QoS/QoE) and security aspects.

Base Cyber Security

Base Cyber Security

Base Cyber Security is an information and cyber security talent service provider and career specialist.

Scholarly Networks Security Initiative (SNSI)

Scholarly Networks Security Initiative (SNSI)

SNSI brings together publishers and institutions to solve cyber-challenges threatening the integrity of the scientific record, scholarly systems and the safety of personal data.

ATHENE National Research Center For Applied Cybersecurity

ATHENE National Research Center For Applied Cybersecurity

ATHENE is the largest research center for cybersecurity and privacy in Europe, conducting application-oriented top-level research for the benefit of the economy, society and the state.

Mitigo Group

Mitigo Group

Mitigo offers a well considered and effective approach to keeping businesses completely secure from any digital attacks.

Eventus Security

Eventus Security

Eventus, are a team of highly skilled professionals who are committed to deliver excellence in next generation cyber security services and customized solutions for your enterprise.

Arista Middle East

Arista Middle East

Arista Middle East is part of Global Arista Technologies specializing in OT Cybersecurity.

Tracebit

Tracebit

Tracebit uses decoys to detect and respond to cloud intrusions in minutes.

Ampsight

Ampsight

Ampsight specializes in enabling cloud integration, securing data, and navigating complications that drive critical-mission success.

UberEther

UberEther

UberEther are a dedicated group of software developers and consultants developing and deploying the next generation of identity management and cloud solutions.