Identity Theft - A Very Personal Hacking Attack

Uploaded on 2020-08-19 in TECHNOLOGY-Key Areas-Social Media, GOVERNMENT-Law Enforcement, FREE TO VIEW

Recently, a US woman was hacked and her personal data held to ransom. She contacted us to tell her story and has kindly agreed that we can tell it to you here. It's a grave warning about the dangers of identity theft and how vulnerable we can be when digital communications platforms are so easily exploited by online criminals.  Everyone needs to be aware of these dangers. 

This is her experience of trying to get help from social media companies and the police. 

“My Apple ID and Facebook were hacked from within an app. The hacker is from the Ukraine. He targeted me for a high profile game which, according to Apple, is the source of the breach. He changed all of my information so I can't verify my account. All of my personal information is now in their hands to include Social Security, ID's, mortgage application, bank accounts, credit cards, Google saved passwords to 87 accounts, my emails, messages, photo's." 

“I was contacted today by another person claiming to be a police officer from the Ukraine. He said he bought an iPhone on the Internet with a Lords Mobile game on it and now the game disappeared. The game disappeared because I disputed charges and they locked it. He now wants me to pay him the $1000 he paid for to get my accounts back. The phone isn't mine. The apple ID on it is mine. Both the hacker and the buyer of the phone now have access to all of my data."

“I had searched the Ukraine police and clicked a link that said it was their cyber security team but no responses. I have also contacted both Apple and Facebook multiple times but can’t get a positive response. 

“Apple can’t help me because the hacker changed everything that verifies me as me within 1 hour on July 21. In that same hour he did the same to Facebook. And Facebook doesn’t respond to my multiple attempts to send my photo ID, reports of my stolen acct, and you can’t contact a real person."

“I contacted my local police but they laughed because the hacker is in Ukraine. Nothing they can do. Also called the FBI since its identity theft and my money was accessed. They can’t really help either. "

“The hacker changed 5 things for Apple. 1. To change my password. 2. To change my recovery email. 3. To add his phone number. 4 to remove my phone number and 5. To change my Apple ID to his email. The next day he removed my iPhone and erased all in my device. Apple sees all his info, but they can’t compromise his privacy!"

" I think people should know that the company that constantly touts themselves as the most secure operating system was the easiest and fastest for the hacker to get. He entered through an app on my phone, a game and on which I have a high profile player account and he sold it for $1000 along with some one’s stolen phone."

“He contacted me on my personal and work email trying to get me to pay the $1000 he paid to the hacker in return for my accounts. Is he really the hacker? Or are there really 2 different low life trying to rob me. My phone contains everything!  This is identity theft, theft of money, theft of a $10-12k digital game, fraud, theft of data, privacy and data breach, impersonation of a police officer since his email said he is a police officer of the Ukraine." 

"Maybe you can use this information, maybe you can’t. Either way, turn off your iCloud, your Google cloud, don’t back up your smart phone anywhere but an external hard drive." 

“Don’t upload documents to your phone, keep email and chats clear, keep your contacts somewhere safe, don’t pay bills or keep apps to them on your smart phone and don’t connect your credit cards or bank info to any smart phone or digital wallet. Don’t keep identification, emailed attachments like W2’s or mortgage info on a digital device or digital storage”.  

If you have any advice or suggestions for the victim of this crime please contact Cyber Security Intelligence.

You Might Also Read: 

Identity Management Fundamentals:   

 

« Cyber Crime Is Growing Very Fast Due To Coronavirus
Remote Working Has Real Cyber Security Risks »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Exploit Database (EDB)

Exploit Database (EDB)

The Exploit Database is a CVE compliant archive of public exploits and corresponding vulnerable software, developed for use by penetration testers and vulnerability researchers.

ITrust

ITrust

French cybersecurity pure player since 2007. ITrust offers its Cyber expertise services and develops disruptive products in Cyber/Artificial Intelligence.

evoila

evoila

evoila GmbH is one of the leading providers in consulting, analysis, implementation and management of cloud infrastructure.

SecurePay

SecurePay

SecurePay is Australia's premier payment gateway, with a range of secure online payment solutions for online retailers, SMEs and enterprise businesses.

IoT European Research Cluster (IERC)

IoT European Research Cluster (IERC)

IERC brings together EU-funded projects with the aim of defining a common vision for IoT technology and development research challenges.

ElcomSoft

ElcomSoft

ElcomSoft is a global leader in computer and mobile forensics, IT security and forensic data recovery.

H3Secure

H3Secure

H3 Secure focuses on Secure Data Erasure Solutions, Mobile Device Diagnostics and Information Technology Security Consulting.

ThreatSwitch

ThreatSwitch

ThreatSwitch a software platform for cleared federal contractors to get and stay compliant with NISPOM and Conforming Change 2.

Cyberport

Cyberport

Cyberport is focused on facilitating the growth of major technology trends such as FinTech and cybersecurity as well as the emerging technologies of AI, big data and blockchain.

QAlified

QAlified

QAlified offer independent testing and quality assurance services for software projects including security testing.

AnzenSage

AnzenSage

AnzenSage is a cybersecurity advisory consultancy specializing in security risk resilience for the food sector: agriculture, food manufacturing, food supply chain, vineyards, and wineries.

Davinsi Labs

Davinsi Labs

Davinsi Labs helps companies achieve Digital Service Excellence with specialized Security Intelligence and Service Intelligence solutions.

Singularico

Singularico

Singularico help secure your software using the power of AI.

Pointsharp

Pointsharp

Pointsharp delivers software and services that help organizations secure data, identities, and access in a user-friendly way.

Access Talent Today

Access Talent Today

Access Talent Today is an AI/ML and cyber security talent provider.

Cloudbox

Cloudbox

Cloudbox build and maintain a highly secure, compliant IT infrastructure for our clients – with total peace of mind – so they can focus on the market.